USB Device Wireless Key Injection or DoS (MouseJack)

This script is Copyright (C) 2016 Tenable Network Security, Inc.


Synopsis :

The remote host has used a wireless USB keyboard device that is
potentially affected by a wireless key injection or denial of service
vulnerability.

Description :

The remote Windows host has used a wireless USB keyboard device that
is potentially affected by a key injection or denial of service
vulnerability that allows a physically local attacker to send
keystrokes to the host.

Note that Nessus cannot determine when the USB device was last used on
the remote host, just that is has been previously used.

See also :

https://www.mousejack.com/

Solution :

Unplug the wireless USB keyboard device from the host until the
vendor issues a firmware update or patch.

Risk factor :

Medium / CVSS Base Score : 6.2
(CVSS2#AV:L/AC:H/Au:N/C:C/I:C/A:C)

Family: Windows

Nessus Plugin ID: 88934 ()

Bugtraq ID:

CVE ID:

Ready to Amp Up Your Nessus Experience?

Get Nessus Professional to scan unlimited IPs, run compliance checks & more

Buy Nessus Professional Now