[X2Go-Dev] Bug#258: SECURITY: x2goclient allows clipboard sniffing
Christoph Anton Mitterer
calestyo at scientia.net
Mon Jul 1 04:38:28 CEST 2013
Package: x2goclient
Severity: grave
Tags: security
Hi.
From: http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=714588
It seems that per default (and I even found no way to disable it)
x2goclient (and perhaps other
related tools?) transmit the content of the clipboard to the remote
host.
As this may easily contain passwords or other sensitive information,
this is a extremely
critical hole.
Cheers,
Chris.
More information about the x2go-dev
mailing list