RSS   Vulnerabilities for 'Norwegian air kiosk'   RSS

2017-02-09
 
CVE-2017-5634

 

 
The Norwegian Air Shuttle (aka norwegian.com) airline kiosk allows physically proximate attackers to bypass the intended "Please select booking identification" UI step, and obtain administrative privileges and network access on the underlying Windows OS, by accessing a touch-screen print icon to manipulate the print dialog.

 


Copyright 2019, cxsecurity.com

 

Back to Top