← back
CVE-2012-0985

CVE-2012-0985

EPSS 13.0%
Multiple buffer overflows in the Wireless Manager ActiveX control 4.0.0.0 in WifiMan.dll in Sony VAIO PC Wireless LAN Wizard 1.0; VAIO Wireless Wizard 1.00, 1.00_64, 1.0.1, 2.0, and 3.0; SmartWi Connection Utility 4.7, 4.7.4, 4.8, 4.9, 4.10, and 4.11; and VAIO Easy Connect software 1.0.0 and 1.1.0 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string in the second argument of the (1) SetTmpProfileOption or (2) ConnectToNetwork method.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/18958unverifiedexploitdbwww.exploit-db.com/exploits/18958unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2012-05/0147.htmlhttp://esupport.sony.com/US/perl/support-info.pl?template_id=1&info_id=946http://osvdb.org/82401http://secunia.com/advisories/49340https://exchange.xforce.ibmcloud.com/vulnerabilities/75978http://www.exploit-db.com/exploits/18958http://www.securityfocus.com/bid/53735