OpenSSH Client Unauthorized X11 Remote Forwarding
High Nessus Plugin ID 11343
SynopsisThe remote SSH client does not disable X11 forwarding.
DescriptionThe remote host is running a version of the OpenSSH client older than 2.3.0. Such versions do not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access to the X11 display and sniff X11 events, or gain access to the ssh-agent.
SolutionUpgrade to OpenSSH 2.3.0 or later.