Another RCE vulnerability in KensingtonWorks

Discussion in 'other security issues & news' started by mood, Sep 30, 2020.

  1. mood

    mood Updates Team

    Joined:
    Oct 27, 2012
    Posts:
    37,948
    It's 2020 so not only is your mouse config tool a Node.JS Electron app, it's also pwnable by an evil webpage
    Malicious JavaScript can inject commands to execute
    September 30, 2020

    https://www.theregister.com/2020/09/30/kensingtonworks_mouse_flaw/
    Another RCE vulnerability in KensingtonWorks
     
  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.