NoMachine NX Server X Authority File Reading Signal Interruption Unauthorized Access Vulnerability

Bugtraq ID:	12681
Class:	Failure to Handle Exceptional Conditions
CVE:
Remote:	No
Local:	Yes
Published:	Feb 28 2005 12:00AM
Updated:	Feb 28 2005 12:00AM
Credit:	The individual or individuals responsible for the discovery of this issue are currently unknown; the vendor disclosed this issue.
Vulnerable:	NoMachine NX Server 1.3.2 NoMachine NX Server 1.3.1 NoMachine NX Server 1.3
Not Vulnerable:	NoMachine NX Server 1.4

NoMachine NX Server X Authority File Reading Signal Interruption Unauthorized Access Vulnerability

A local unauthorized access vulnerability affects NoMachine NX Server. This issue due to a failure of the application to securely carry out its authentication procedure.

An attacker may leverage this issue to gain unauthorized access to an affected x server.

NoMachine NX Server X Authority File Reading Signal Interruption Unauthorized Access Vulnerability

Currently we are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.

NoMachine NX Server X Authority File Reading Signal Interruption Unauthorized Access Vulnerability

Solution:
The vendor has released an upgrade dealing with this issue. Please contact the vendor for more information on obtaining the update.

NoMachine NX Server X Authority File Reading Signal Interruption Unauthorized Access Vulnerability

References:

• SOFTWARE UPDATE: New Maintenance Release of NX 1.4.0 Server Packages (NoMachine)
  
• NX Server Home Page (NoMachine)