CVE-2015-7244

The default configuration of the server in MobaXterm before 8.3 has a disabled Access Control setting and consequently does not require authentication for X11 connections, which allows remote attackers to execute arbitrary commands or obtain sensitive information via X11 packets.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://blog.mobatek.net/post/mobaxterm-new-release-8.3/	Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/316888	Third Party Advisory US Government Resource
http://www.securifera.com/advisories/cve-2015-7244
http://blog.mobatek.net/post/mobaxterm-new-release-8.3/	Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/316888	Third Party Advisory US Government Resource
http://www.securifera.com/advisories/cve-2015-7244

Configurations

Configuration 1 (hide)

cpe:2.3:a:mobatek:mobaxterm:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2015-11-04 03:59

Updated : 2025-04-12 10:46

NVD link : CVE-2015-7244

Mitre link : CVE-2015-7244

CVE.ORG link : CVE-2015-7244

JSON object : View

Products Affected

mobatek

mobaxterm

CWE

CWE-284

Improper Access Control

{"id": "CVE-2015-7244", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2015-11-04T03:59:12.950", "references": [{"url": "http://blog.mobatek.net/post/mobaxterm-new-release-8.3/", "tags": ["Patch", "Vendor Advisory"], "source": "cret@cert.org"}, {"url": "http://www.kb.cert.org/vuls/id/316888", "tags": ["Third Party Advisory", "US Government Resource"], "source": "cret@cert.org"}, {"url": "http://www.securifera.com/advisories/cve-2015-7244", "source": "cret@cert.org"}, {"url": "http://blog.mobatek.net/post/mobaxterm-new-release-8.3/", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.kb.cert.org/vuls/id/316888", "tags": ["Third Party Advisory", "US Government Resource"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securifera.com/advisories/cve-2015-7244", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-284"}]}], "descriptions": [{"lang": "en", "value": "The default configuration of the server in MobaXterm before 8.3 has a disabled Access Control setting and consequently does not require authentication for X11 connections, which allows remote attackers to execute arbitrary commands or obtain sensitive information via X11 packets."}, {"lang": "es", "value": "La configuraci\u00f3n por defecto del servidor en MobaXterm en versiones anteriores a 8.3 tiene el ajuste Access Control deshabilitado y consecuentemente no requiere autenticaci\u00f3n para conexiones X11, lo que permite a atacantes remotos ejecutar comandos arbitrarios u obtener informaci\u00f3n sensible a trav\u00e9s de paquetes X11."}], "lastModified": "2025-04-12T10:46:40.837", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:mobatek:mobaxterm:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "24E362DF-5349-41FF-974B-1A6B5A1F8528", "versionEndIncluding": "8.2"}], "operator": "OR"}]}], "sourceIdentifier": "cret@cert.org"}