First published: Thu Jul 18 2013(Updated: )
Google Glass before XE6 does not properly restrict the processing of QR codes, which allows physically proximate attackers to modify the configuration or redirect users to arbitrary web sites via a crafted symbol, as demonstrated by selecting a Wi-Fi access point in order to conduct a man-in-the-middle attack.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Google Glass | <=xe5 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.