Unauthenticated Remote Window Manipulation in Emote Remote Mouse

Unauthenticated Remote Window Manipulation in Emote Remote Mouse

CVE-2021-27569 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

An issue was discovered in Emote Remote Mouse through 4.0.0.0. Attackers can maximize or minimize the window of a running process by sending the process name in a crafted packet. This information is sent in cleartext and is not protected by any authentication logic.

Learn more about our Web Application Penetration Testing UK.