Earlier this year, peripheral maker Kensington patched its desktop software to close a vulnerability that could have been exploited by malicious websites to quietly hijack victims’ computers. Now the programmer who found this remote-code-execution hole, and reported it to the manufacturer, has identified a similarly serious flaw that’s yet to be addressed.
Read full article on The Register