virus logo Intrusion Prevention

Hak5.WiFi.Pineapple.Security.Bypass.Command.Injection

description-logoDescription

This indicates an attempt to exploit a remote Code Execution vulnerability in WiFi Pineapples.
The vulnerability is due to insufficient sanitizing of user supplied inputs while handling maliciously crafted HTTP request. A remote attacker can exploit this to execute remote code on a targeted system via a crafted HTTP request.

affected-products-logoAffected Products

WiFi Pineapple 2.0.0 and prior
WiFi Pineapple 2.3.0 and prior

Impact logoImpact

System Compromise: Remote attackers can gain control of vulnerable systems.

recomended-action-logoRecommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 43293
Created Nov 02, 2016
Updated Nov 22, 2016
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Default Action drop
Active
Affected OS Linux
Affected App Other