CVE-2016-6257
medium
CVSS v3
6.5
CVSS v2
3.3
VIR risk
6.5
Description
The firmware in Lenovo Ultraslim dongles, as used with Lenovo Liteon SK-8861, Ultraslim Wireless, and Silver Silk keyboards and Liteon ZTM600 and Ultraslim Wireless mice, does not enforce incrementing AES counters, which allows remote attackers to inject encrypted keyboard input into the system by leveraging proximity to the dongle, aka a "KeyJack injection attack."
Predictions
Exploit likelihood
65%
Patch ETA
—
Heuristic predictions, AS-IS, for prioritization only.
Mitigations
Vendor advisory: cve@mitre.org — https://support.lenovo.com/product_security/len_7267
References
- http://www.securityfocus.com/bid/92179
- https://github.com/BastilleResearch/keyjack/blob/master/doc/advisories/bastille-13.lenovo-ultraslim.public.txt
- https://support.lenovo.com/product_security/len_7267
- https://www.bastille.net/research/vulnerabilities/keyjack
- http://www.securityfocus.com/bid/92179
- https://github.com/BastilleResearch/keyjack/blob/master/doc/advisories/bastille-13.lenovo-ultraslim.public.txt
- https://support.lenovo.com/product_security/len_7267
- https://www.bastille.net/research/vulnerabilities/keyjack
CWEs
CWE-310
Verify integrity in audit chain (admin only). AS-IS.