18 matches found
EUVD-2017-11458
Malware in sbrugna...
EUVD-2017-11459
Malware in sbrugna...
Authentication flaw
WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors...
CVE-2017-2275
WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors...
CVE-2017-2277
WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors...
CVE-2017-2275
WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary OS commands via unspecified vectors...
CVE-2017-2276
Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary commands via unspecified vectors...
CVE-2017-2276
Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary commands via unspecified vectors...
Buffer overflow
Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary commands via unspecified vectors...
CVE-2017-2275
Implemented details for CVE-2017-2275 show that Sony WG-C10 Portable Wireless Server (v3.0.79 and earlier) is affected by an OS command injection vulnerability. An attacker with administrator login can execute arbitrary OS commands on the device via unspecified vectors. The linked documents confi...
CVE-2017-2276
Buffer overflow in WG-C10 v3.0.79 and earlier allows an attacker to execute arbitrary commands via unspecified vectors...
CVE-2017-2276
The CVE-2017-2276 issue affects Sony Portable Wireless Server WG-C10, v3.0.79 and earlier. It is a buffer overflow (CWE-119) that can allow an attacker to execute arbitrary OS commands, typically when an administrator is logged in. The connected records corroborate this as the main vulnerability ...
CVE-2017-2277
CVE-2017-2277 affects Sony WG-C10 Portable Wireless Server, versions 3.0.79 and earlier. The vulnerability is a bypass of access restrictions that could allow an attacker to obtain or alter data stored on the external storage connected to the product. The root cause is inadequate access control (...
CVE-2017-2277
WG-C10 v3.0.79 and earlier allows an attacker to bypass access restrictions to obtain or alter information stored in the external storage connected to the product via unspecified vectors...
SONY Portable Wireless Server WG-C10 fails to restrict access permissions
Overview Portable Wireless Server WG-C10 provided by Sony Corporation fails to restrict access permissions CWE-284. Taizoh Tsukamoto of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning...
Sony WG-C10 Security Bypass Vulnerability
The Sony WG-C10 is a wireless portable server from Sony Japan. A security vulnerability exists in Sony WG-C10 version 3.0.79 and earlier. An attacker could exploit the vulnerability to bypass access control and obtain or change information stored on an external storage device...
JVN#14151222: Multiple vulnerabilities SONY Portable Wireless Server WG-C10
Portable Wireless Server WG-C10 provided by Sony Corporation contains multiple vulnerabilities listed below. OS command injection CWE-78 - CVE-2017-2275 Version| Vector| Score ---|---|--- CVSS v3| CVSS:3.0/AV:A/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H| Base Score: 6.8 CVSS v2| AV:A/AC:L/Au:S/C:P/I:P/A:P|...
JVN#77412145: SONY Portable Wireless Server WG-C10 fails to restrict access permissions
Portable Wireless Server WG-C10 provided by Sony Corporation fails to restrict access permissions CWE-284. Impact An authenticated attacker may obtain or alter information stored in the external storage connected to product. Solution Apply a Workaround The following workarounds may mitigate the...