Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2012-2990
HistoryOct 03, 2022 - 4:15 p.m.

CVE-2012-2990

2022-10-0316:15:36
CWE-94
[email protected]
web.nvd.nist.gov
41
cve-2012-2990
masetupcaller
activex control
markany contentsafer
samsung kies
remote code execution
html vulnerability
nvd

7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

69.7%

JSON

The MASetupCaller ActiveX control before 1.4.2012.508 in MASetupCaller.dll in MarkAny ContentSAFER, as distributed in Samsung KIES before 2.3.2.12074_13_13, does not properly implement unspecified methods, which allows remote attackers to download an arbitrary program onto a client machine, and execute this program, via a crafted HTML document.

Affected configurations

NVD
Node
samsungkiesRange2.3.2.12074
CPENameOperatorVersion
samsung:kiessamsung kiesle2.3.2.12074

Related

cert 1
nessus 1
prion 1
nvd 1
cvelist 1
cert
cert
MarkAny ContentSAFER MASetupCaller ActiveX control arbitrary download and execution
2012-08-23 00:00:00
nessus
nessus
MarkAny Content SAFER ActiveX Arbitrary Download and Execution
2012-12-14 00:00:00
prion
prion
Hardcoded credentials
2012-08-24 20:55:00
nvd
nvd
CVE-2012-2990
2012-08-24 20:55:02
cvelist
cvelist
CVE-2012-2990
2022-10-03 16:15:36

7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.003 Low

EPSS

Percentile

69.7%

JSON
Related for CVE-2012-2990
cert1nessus1prion1nvd1cvelist1