Advisory ID: SYSS-2019-008 Product: 2.4 GHz Wearable Wireless Presenter WP2002 Manufacturer: Inateck Affected Version(s): n/a Tested Version(s): n/a Vulnerability Type: Insufficient Verification of Data Authenticity (CWE-345), Keystroke Injection Vulnerability Risk Level: High Solution Status: Open Manufacturer Notification: 2019-03-22 Public Disclosure: 2019-06-04 CVE Reference: CVE-2019-12504 Overview: Inateck WP2002 is a ring-shaped wearable wireless presenter using 2.4 GHz radio communication, which is prone to keystroke injection attacks due to unencrypted and unauthenticated data communication. Vulnerability Details: An attacker can analyze the unencrypted data packets to learn the used protocol and inject arbitrary keystrokes into the target system. Proof of Concept (PoC): SySS GmbH successfully performed keystroke injection attacks using the open-source software tool Universal Radio Hacker in combination with the software-defined radio HackRF One. Solution: SySS GmbH is not aware of a solution for this reported security vulnerability. Disclosure Timeline: - 2019-03-22: Vulnerability reported to manufacturer - 2019-06-04: Public release of security advisory References: - [1] Product website for Inateck WP2002 - [2] Universal Radio Hacker (URH) - [3] HackRF One - [4] SySS Security Advisory SYSS-2019-008 Credits: This security vulnerability was found by Matthias Deeg of SySS GmbH.