Re: MicroImages MIX X Server

[marcus.post () WCOM COM (Marcus Post)]

Are you certain this is crashing the remote server? Telneting in and sending
jibberish will have the server close the connection, just the same as
telneting into a non-telnet port and typing jiberish  (UUCP, SMTP, Kerberos,
FTP, etc. IIRC) will do.

#1 Are there any kind of error messages, crash messages, etc, on the host
machine? The message given was solely on the remote machine trying to telnet
in. WHats happening with the server?

#2 Can you check to be certain that the server is using 6000 for it's remote
X sessions?

#3 Have you tried connecting with an X client to this server the usual way
after 'crashing' it this way?

I find it hard to believe based solely on this telnet log that the server
actually went down.

Marcus

-----Original Message-----
From: Bugtraq List [mailto:BUGTRAQ () SECURITYFOCUS COM]On Behalf Of Jim
Frost
Sent: Tuesday, October 05, 1999 12:23 PM
To: BUGTRAQ () SECURITYFOCUS COM
Subject: Re: MicroImages MIX X Server

Jan Szumiec wrote:
> I don't know whether anyone wrote about this, so here it goes.
>
> It is possible to bring down the XServer remotely ...
>
> $ telnet 192.168.1.2 6000
> Connected to 192.168.1.2
> Escape character is ^[
> djkfhgjksdhgjklhgjklsdhgjklehrslhgsd
> Connection closed by remote host.
> $
>
> Basically telneting into port 6000 of the server and typing in random
> gibberish, brings it down.

Is the server xhost + or not?  Might make a difference.

jim