|
Kismet ESSID Remote Command Execution Vulnerability
Kismet is a freely available, open source software package maintained by the Kismet Project. A maliciously formatted ESSID may make it possible for a remote user to execute arbitrary commands. The SayText() function of Kismet passes text directly to the shell of the executing user. By embedding commands with backticks in data sent via SayText(), a user may be able to execute commands. |
|
|
Privacy Statement |
