Insecure Defaults Leads to Potential MITMezseed-transmission
Affected versions of
ezseed-transmission download and run a script over an HTTP connection.
An attacker in a privileged network position could launch a Man-in-the-Middle attack and intercept the script, replacing it with malicious code, completely compromising the system running
Update to version 0.0.15 or later.
publishedAdvisory publishedJul 29th, 2016
reportedInitial report by Adam BaldwinMay 5th, 2016