Remote Mouse simulates the functions of a mouse, keyboard, and touchpad on Windows, macOS, and Linux machines, and is compatible with iOS, Android, and Windows mobile devices.
Six zero-day vulnerabilities in Remote Mouse, a hugely popular app that turns tablets and smartphones into remote controllers for desktop PCs, could potentially lead to zero-click remote code execution (RCE).Ĭollectively dubbed ‘MouseTrap’, the security flaws arise from the use of authentication with a password hash that can be intercepted and looked up in a rainbow table, and the absence of encryption and cryptographic nonces in communications, according to a blog post published by security researcher Axel Persinger on May 5. Remote control app for desktop PCs has surpassed 20m users, says vendor
