CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-2990

The MASetupCaller ActiveX control before 1.4.2012.508 in MASetupCaller.dll in MarkAny ContentSAFER, as distributed in Samsung KIES before 2.3.2.12074_13_13, does not properly implement unspecified methods, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a crafted HTML document.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.012

EPSS Ranking 78.7%

CVSS Severity

CVSS v2 Score 9.3

References

http://www.kb.cert.org/vuls/id/663809
http://www.krcert.or.kr/kor/data/secNoticeView.jsp?p_bulletin_writing_sequence=931
http://www.kb.cert.org/vuls/id/663809
http://www.krcert.or.kr/kor/data/secNoticeView.jsp?p_bulletin_writing_sequence=931

Products affected by CVE-2012-2990

Samsung » Kies » Version: N/A

cpe:2.3:a:samsung:kies:-
Samsung » Kies » Version: 2.3.2.12074

cpe:2.3:a:samsung:kies:2.3.2.12074

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-2990

Products

Pricing

Contact Us