Code: p655 Severity: Warning
Description: This event is generated when execution of a common X Window system command is attempted via HTTP. Impact: The attacker may be able to initiate an X session on the web server. Corrective: Webservers should not be allowed to view or execute files and binaries outside of its designated web root or cgi-bin. This command may also be requested on a command line should the attacker gain access to the machine. Non-essential binaries should be removed from a webserver once it is in production.
|
