CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-0985

Multiple buffer overflows in the Wireless Manager ActiveX control 4.0.0.0 in WifiMan.dll in Sony VAIO PC Wireless LAN Wizard 1.0; VAIO Wireless Wizard 1.00, 1.00_64, 1.0.1, 2.0, and 3.0; SmartWi Connection Utility 4.7, 4.7.4, 4.8, 4.9, 4.10, and 4.11; and VAIO Easy Connect software 1.0.0 and 1.1.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the second argument of the (1) SetTmpProfileOption or (2) ConnectToNetwork method.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.481

EPSS Ranking 97.6%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2012-0985

Sony » Smartwi Connection Utillity » Version: 4.10

cpe:2.3:a:sony:smartwi_connection_utillity:4.10
Sony » Smartwi Connection Utillity » Version: 4.11

cpe:2.3:a:sony:smartwi_connection_utillity:4.11
Sony » Smartwi Connection Utillity » Version: 4.7

cpe:2.3:a:sony:smartwi_connection_utillity:4.7
Sony » Smartwi Connection Utillity » Version: 4.7.4

cpe:2.3:a:sony:smartwi_connection_utillity:4.7.4
Sony » Smartwi Connection Utillity » Version: 4.8

cpe:2.3:a:sony:smartwi_connection_utillity:4.8
Sony » Smartwi Connection Utillity » Version: 4.9

cpe:2.3:a:sony:smartwi_connection_utillity:4.9
Sony » Vaio Easy Connect » Version: 1.0.0

cpe:2.3:a:sony:vaio_easy_connect:1.0.0
Sony » Vaio Easy Connect » Version: 1.1.0

cpe:2.3:a:sony:vaio_easy_connect:1.1.0
Sony » Vaio Pc Wireless Lan Wizard » Version: 1.0

cpe:2.3:a:sony:vaio_pc_wireless_lan_wizard:1.0
Sony » Vaio Wireless Wizard » Version: 1.00

cpe:2.3:a:sony:vaio_wireless_wizard:1.00
Sony » Vaio Wireless Wizard » Version: 1.00_64

cpe:2.3:a:sony:vaio_wireless_wizard:1.00_64
Sony » Vaio Wireless Wizard » Version: 1.01

cpe:2.3:a:sony:vaio_wireless_wizard:1.01
Sony » Vaio Wireless Wizard » Version: 2.0

cpe:2.3:a:sony:vaio_wireless_wizard:2.0
Sony » Vaio Wireless Wizard » Version: 3.0

cpe:2.3:a:sony:vaio_wireless_wizard:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-0985

Products

Pricing

Contact Us