Vulnerabilities > Sony > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2012-09-07 | CVE-2010-5242 | Unspecified vulnerability in Sony Sound Forge 10.0 Untrusted search path vulnerability in Sound Forge Pro 10.0b Build 474 allows local users to gain privileges via a Trojan horse MtxParhVegasPreview.dll file in the current working directory, as demonstrated by a directory that contains a .sfw file. local sony | 6.9 |
| 2008-04-25 | CVE-2008-1938 | Improper Authentication vulnerability in Sony Mylo COM 2 Sony Mylo COM-2 Japanese model firmware before 1.002 does not properly verify web server SSL certificates, which allows remote attackers to obtain sensitive information and conduct spoofing attacks. | 6.4 |
| 2007-09-10 | CVE-2007-4785 | Security Bypass vulnerability in Micro Vault Fingerprint Access Software Sony Micro Vault Fingerprint Access Software, as distributed with Sony Micro Vault USM-F USB flash drives, installs a driver that hides a directory under %WINDIR%, which might allow remote attackers to bypass malware detection by placing files in this directory. network sony | 6.8 |
| 2006-08-31 | CVE-2006-4507 | Local Security vulnerability in PSP Unspecified vulnerability in the TIFF viewer (possibly libTIFF) in the Photo Viewer in the Sony PlaystationPortable (PSP) 2.00 through 2.80 allows local users to execute arbitrary code via crafted TIFF images. | 4.6 |
| 2006-08-22 | CVE-2006-4290 | Directory Traversal vulnerability in Sony VAIO Media Integrated Server Directory traversal vulnerability in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x before 20060626 allows remote attackers to gain sensitive information via unspecified vectors. | 5.0 |
| 2005-11-03 | CVE-2005-3474 | Local Security vulnerability in First4internet Xcp Content Management The aries.sys driver in Sony First4Internet XCP DRM software hides any file, registry key, or process with a name that starts with "$sys$", which allows attackers to hide activities on a system that uses XCP. | 4.6 |
| 2005-09-27 | CVE-2005-3084 | Denial-Of-Service vulnerability in Sony Playstation Portable 2.0Firmware Buffer overflow in the TIFF library in the Photo Viewer for Sony PSP 2.0 firmware allows remote attackers to cause a denial of service via a crafted TIFF image. | 5.0 |
| 2005-06-01 | CVE-2005-1809 | Unspecified vulnerability in Sony P900 Firmware Sony Ericsson P900 Beamer allows remote attackers to cause a denial of service (panic) via an obexftp session with a long filename in an OBEX File Transfer or OBEX Object Push. | 5.0 |
| 2002-12-31 | CVE-2002-2108 | Unspecified vulnerability in Sony Vaio Manual Cybersupport 3.0/3.1 Unknown vulnerability in the "VAIO Manual" software in certain Sony VAIO personal computers sold from November 2001 to January 2002, allows remote attackers to modify data via a web page or HTML e-mail. | 5.0 |