The TELNET service in Mobatek MobaXterm 10.4 does not require authentication, which allows remote malicious users to execute arbitrary commands via TCP port 23.
mobatek mobaxterm 10.4