oof... rce in hostapd which provide wifi on basically everything https://moabi.com/advisories/CVE-2019-10064.html?fbclid=IwAR2MQ7JXIyGVd9l4AZcR0PZ-tGYby_sBByZlKA7oS9Jp7BL_ZRKFSQq5IWs …
nice work @moabi_com
Replying to @caseyjohnellis @moabi_com
I don't think it's RCE, they're saying if open() or read() from /dev/urandom fails, then the fallback was to use rand() to generate the PIN for WPS. That's a real code quality issue, but probably never going to happen in real life....
1:57 PM - 27 Feb 2020
0 replies
0 retweets
5 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.