Lumension® Endpoint Intelligence Center

Intelligence Center » News Archive » Remote code execution flaw found in iPass Open Mobile Windows Client

Remote code execution flaw found in iPass Open Mobile Windows Client

2015/01/23

Softpedia – (International) A security researcher at Code White GmbH reported vulnerability in the iPass Open Mobile Windows Client that could allow an attacker to execute arbitrary code by sending a specially-crafted unicode string to a subprocess with SYSTEM privileges. The developers released a patch to address the flaw in the iPass network that includes free and open access hotspots, certain hotel and convention venues, and provides Internet access to trains with WiFi support as well as in-flight WiFi in airplanes.

Source: http://news.softpedia.com/news/Remote-Code-Execution-Flaw-Found-in-iPass-Open-Mobile-Windows-Client-471054.shtml

Note: This news synopsis is taken from the DHS Daily Open Source Infrastructure Report, a daily [Monday through Friday, except US Federal holidays] summary of open-source published information concerning significant critical infrastructure issues; a 10-day archive of the DOSIR can be found at: http://www.dhs.gov/dhs-daily-open-source-infrastructure-report.


Last Updated: 27 May 2016 10:23:15