CVE-2017-2911

2017-11-07T11:29:00
ID CVE-2017-2911
Type cve
Reporter NVD
Modified 2017-11-28T12:59:46

Description

An exploitable vulnerability exists in the remote control functionality of Circle with Disney running firmware 2.0.1. SSL certificates for specific domain names can cause the rclient daemon to accept a different certificate than intended. An attacker can host an HTTPS server with this certificate to trigger this vulnerability.