Vulnerability Development mailing list archives
Re: X Server Test/Exploit
From: M ixter <mixter () 2XS CO IL>
Date: Thu, 31 Aug 2000 11:23:46 +0300
I'd suggest using the X11 library to test a simple server connection... if the function XOpenDisplay() succeeds, you are authorized to connect and launch any program, sniff, etc. This is the easiest check and a few scanners already use it... e.g.: #include <X11/Xlib.h> ... Display *d; if ((d = XOpenDisplay("target.host.com:0")) != NULL) { printf("target.host.com is vulnerable\n"); XCloseDisplay(d); } ---------------------------------------------------------- Mixter <mixter () 2xs co il>, 2xs LTD. http://www.2xs.co.il On Wed, 30 Aug 2000, Crist Clark wrote:
Does anyone have a quick tool to test for open X servers? I have an 'xkey' style program which eavesdrops keystrokes and mouse actions, but that has some drawbacks. If I attempt to watch a server and it fails, I know the server is not promiscuous. However, if it does not fail, that does not mean the server is promiscuous... For example, there may be no server running or even no machine at all. Anyone seen something that can get a more definitive response on the status of an X server? (Kind of surprised there is no Nessus plugin that does more than just detect the server... Maybe if someone finds me a test proggie I can translate it into a plugin. I'm here begging since I figure it could take some serious time to learn enough Xlib calls to get a C program, perl script, or NASL script working from scratch.) Thanks. -- Crist J. Clark Network Security Engineer crist.clark () globalstar com Globalstar, L.P. (408) 933-4387 FAX: (408) 933-4926
Current thread:
- X Server Test/Exploit Crist Clark (Aug 30)
- Re: X Server Test/Exploit Ghandi (Aug 31)
- Re: X Server Test/Exploit M ixter (Aug 31)
- Re: X Server Test/Exploit Massimo Fubini (Aug 31)
- Re: X Server Test/Exploit Sebastian Schreiber (Aug 31)
- Re: X Server Test/Exploit Matthew F. Caldwell (Aug 31)