Lucene search

MitreCVE-2012-0985

HistoryJun 07, 2012 - 7:55 p.m.

CVE-2012-0985

2012-06-0719:55:06

CWE-119

mitre

web.nvd.nist.gov

cve

buffer overflow

wireless manager

activex control

sony vaio

remote attackers

denial of service

execute arbitrary code

nvd

CVSS2

9.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

AI Score

7.9

Confidence

Low

EPSS

0.242

Percentile

96.6%

JSON

Multiple buffer overflows in the Wireless Manager ActiveX control 4.0.0.0 in WifiMan.dll in Sony VAIO PC Wireless LAN Wizard 1.0; VAIO Wireless Wizard 1.00, 1.00_64, 1.0.1, 2.0, and 3.0; SmartWi Connection Utility 4.7, 4.7.4, 4.8, 4.9, 4.10, and 4.11; and VAIO Easy Connect software 1.0.0 and 1.1.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the second argument of the (1) SetTmpProfileOption or (2) ConnectToNetwork method.

Affected configurations

Nvd

Node

sonysmartwi_connection_utillityMatch4.7

sonysmartwi_connection_utillityMatch4.7.4

sonysmartwi_connection_utillityMatch4.8

sonysmartwi_connection_utillityMatch4.9

sonysmartwi_connection_utillityMatch4.10

sonysmartwi_connection_utillityMatch4.11

sonyvaio_easy_connectMatch1.0.0

sonyvaio_easy_connectMatch1.1.0

sonyvaio_pc_wireless_lan_wizardMatch1.0

sonyvaio_wireless_wizardMatch1.00

sonyvaio_wireless_wizardMatch1.00_64

sonyvaio_wireless_wizardMatch1.01

sonyvaio_wireless_wizardMatch2.0

sonyvaio_wireless_wizardMatch3.0

VendorProductVersionCPE
sonysmartwi_connection_utillity4.7cpe:2.3:a:sony:smartwi_connection_utillity:4.7:*:*:*:*:*:*:*
sonysmartwi_connection_utillity4.7.4cpe:2.3:a:sony:smartwi_connection_utillity:4.7.4:*:*:*:*:*:*:*
sonysmartwi_connection_utillity4.8cpe:2.3:a:sony:smartwi_connection_utillity:4.8:*:*:*:*:*:*:*
sonysmartwi_connection_utillity4.9cpe:2.3:a:sony:smartwi_connection_utillity:4.9:*:*:*:*:*:*:*
sonysmartwi_connection_utillity4.10cpe:2.3:a:sony:smartwi_connection_utillity:4.10:*:*:*:*:*:*:*
sonysmartwi_connection_utillity4.11cpe:2.3:a:sony:smartwi_connection_utillity:4.11:*:*:*:*:*:*:*
sonyvaio_easy_connect1.0.0cpe:2.3:a:sony:vaio_easy_connect:1.0.0:*:*:*:*:*:*:*
sonyvaio_easy_connect1.1.0cpe:2.3:a:sony:vaio_easy_connect:1.1.0:*:*:*:*:*:*:*
sonyvaio_pc_wireless_lan_wizard1.0cpe:2.3:a:sony:vaio_pc_wireless_lan_wizard:1.0:*:*:*:*:*:*:*
sonyvaio_wireless_wizard1.00cpe:2.3:a:sony:vaio_wireless_wizard:1.00:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
sony	smartwi_connection_utillity	4.7	cpe:2.3:a:sony:smartwi_connection_utillity:4.7:::::::*
sony	smartwi_connection_utillity	4.7.4	cpe:2.3:a:sony:smartwi_connection_utillity:4.7.4:::::::*
sony	smartwi_connection_utillity	4.8	cpe:2.3:a:sony:smartwi_connection_utillity:4.8:::::::*
sony	smartwi_connection_utillity	4.9	cpe:2.3:a:sony:smartwi_connection_utillity:4.9:::::::*
sony	smartwi_connection_utillity	4.10	cpe:2.3:a:sony:smartwi_connection_utillity:4.10:::::::*
sony	smartwi_connection_utillity	4.11	cpe:2.3:a:sony:smartwi_connection_utillity:4.11:::::::*
sony	vaio_easy_connect	1.0.0	cpe:2.3:a:sony:vaio_easy_connect:1.0.0:::::::*
sony	vaio_easy_connect	1.1.0	cpe:2.3:a:sony:vaio_easy_connect:1.1.0:::::::*
sony	vaio_pc_wireless_lan_wizard	1.0	cpe:2.3:a:sony:vaio_pc_wireless_lan_wizard:1.0:::::::*
sony	vaio_wireless_wizard	1.00	cpe:2.3:a:sony:vaio_wireless_wizard:1.00:::::::*