CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
96.6%
Multiple buffer overflows in the Wireless Manager ActiveX control 4.0.0.0 in WifiMan.dll in Sony VAIO PC Wireless LAN Wizard 1.0; VAIO Wireless Wizard 1.00, 1.00_64, 1.0.1, 2.0, and 3.0; SmartWi Connection Utility 4.7, 4.7.4, 4.8, 4.9, 4.10, and 4.11; and VAIO Easy Connect software 1.0.0 and 1.1.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the second argument of the (1) SetTmpProfileOption or (2) ConnectToNetwork method.
Vendor | Product | Version | CPE |
---|---|---|---|
sony | smartwi_connection_utillity | 4.7 | cpe:2.3:a:sony:smartwi_connection_utillity:4.7:*:*:*:*:*:*:* |
sony | smartwi_connection_utillity | 4.7.4 | cpe:2.3:a:sony:smartwi_connection_utillity:4.7.4:*:*:*:*:*:*:* |
sony | smartwi_connection_utillity | 4.8 | cpe:2.3:a:sony:smartwi_connection_utillity:4.8:*:*:*:*:*:*:* |
sony | smartwi_connection_utillity | 4.9 | cpe:2.3:a:sony:smartwi_connection_utillity:4.9:*:*:*:*:*:*:* |
sony | smartwi_connection_utillity | 4.10 | cpe:2.3:a:sony:smartwi_connection_utillity:4.10:*:*:*:*:*:*:* |
sony | smartwi_connection_utillity | 4.11 | cpe:2.3:a:sony:smartwi_connection_utillity:4.11:*:*:*:*:*:*:* |
sony | vaio_easy_connect | 1.0.0 | cpe:2.3:a:sony:vaio_easy_connect:1.0.0:*:*:*:*:*:*:* |
sony | vaio_easy_connect | 1.1.0 | cpe:2.3:a:sony:vaio_easy_connect:1.1.0:*:*:*:*:*:*:* |
sony | vaio_pc_wireless_lan_wizard | 1.0 | cpe:2.3:a:sony:vaio_pc_wireless_lan_wizard:1.0:*:*:*:*:*:*:* |
sony | vaio_wireless_wizard | 1.00 | cpe:2.3:a:sony:vaio_wireless_wizard:1.00:*:*:*:*:*:*:* |