WiFi Mouse 1.8.3.4 Remote Code Execution...

- AV AC AU C I A
发布: 2022-09-26
修订: 2022-11-10

The WiFi Mouse (Mouse Server) from Necta LLC contains an authentication bypass as the authentication is completely implemented entirely on the client side. By utilizing this vulnerability, is possible to open a program on the server (cmd.exe in our case) and type commands that will be executed as the user running WiFi Mouse (Mouse Server), resulting in remote code execution. Tested against versions 1.8.3.4 (current as of module writing) and 1.8.2.3.

0%
当前有1条漏洞利用/PoC
当前有0条受影响产品信息