Vulnerabilities > Samsung
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2012-11-28 | CVE-2012-4964 | Permissions, Privileges, and Access Controls vulnerability in Samsung Printer Firmware The Samsung printer firmware before 20121031 has a hardcoded read-write SNMP community, which makes it easier for remote attackers to obtain administrative access via an SNMP request. | 7.5 |
2012-08-24 | CVE-2012-2990 | Code Injection vulnerability in Samsung Kies 2.3.2.12074 The MASetupCaller ActiveX control before 1.4.2012.508 in MASetupCaller.dll in MarkAny ContentSAFER, as distributed in Samsung KIES before 2.3.2.12074_13_13, does not properly implement unspecified methods, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a crafted HTML document. | 9.3 |
2012-08-21 | CVE-2012-2980 | Credentials Management vulnerability in multiple products The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myTouch 4G Slide, and Samsung Galaxy S stores touch coordinates in the dmesg buffer, which allows remote attackers to obtain sensitive information via a crafted application, as demonstrated by PIN numbers, telephone numbers, and text messages. | 7.1 |
2012-08-14 | CVE-2012-4335 | Buffer Errors vulnerability in Samsung Net-I Viewer 1.37.120316 Samsung NET-i viewer 1.37.120316 allows remote attackers to cause a denial of service (infinite loop) via a negative size value in a TCP request to (1) NiwMasterService or (2) NiwStorageService. | 7.8 |
2012-08-14 | CVE-2012-4334 | Remote vulnerability in Samsung Net-I Viewer 1.37.120316 The ConnectDDNS method in the (1) STWConfigNVR 1.1.13.15 and (2) STWConfig 1.1.14.13 ActiveX controls in Samsung NET-i viewer 1.37.120316 allows remote attackers to execute arbitrary code via unspecified vectors. | 10.0 |
2012-08-14 | CVE-2012-4333 | Buffer Errors vulnerability in Samsung Net-I Viewer 1.37.120316 Multiple stack-based buffer overflows in the BackupToAvi method in the (1) UMS_Ctrl 1.5.1.1 and (2) UMS_Ctrl_STW 2.0.1.0 ActiveX controls in Samsung NET-i viewer 1.37.120316 allow remote attackers to execute arbitrary code via a long string in the fname parameter. | 10.0 |
2012-08-14 | CVE-2012-4330 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Samsung D6000 Firmware The Samsung D6000 TV and possibly other products allows remote attackers to cause a denial of service (crash) via a long string in certain fields, as demonstrated by the MAC address field, possibly a buffer overflow. | 7.8 |
2012-08-14 | CVE-2012-4329 | Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Samsung D6000 Firmware The Samsung D6000 TV and possibly other products allow remote attackers to cause a denial of service (continuous restart) via a crafted controller name. | 7.8 |
2012-08-13 | CVE-2012-4250 | Buffer Errors vulnerability in Samsung Net-I Viewer 1.37 Stack-based buffer overflow in the RequestScreenOptimization function in the XProcessControl.ocx ActiveX control in msls31.dll in Samsung NET-i viewer 1.37 allows remote attackers to execute arbitrary code via a long string in the first argument. | 9.3 |
2012-07-24 | CVE-2012-4050 | Unspecified vulnerability in Google Chrome OS Multiple unspecified vulnerabilities in Google Chrome OS before 21.0.1180.50 on the Cr-48 and Samsung Series 5 and 5 550 Chromebook platforms, and the Samsung Chromebox Series 3, have unknown impact and attack vectors. | 10.0 |