Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-4192

Malware in sbrugna...

9.3CVSS6.1AI score0.03489EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2012-4193

Malware in sbrugna...

10CVSS6.1AI score0.03722EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/22 2:8 a.m.13 views

CVE-2012-4249

The Amazon Lab126 com.lab126.system sendEvent implementation on the Kindle Touch before 5.1.2 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a string, as demonstrated by using lipc-set-prop to set an LIPC property, a different vulnerability than...

10CVSS7.4AI score0.03722EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 2:8 a.m.11 views

CVE-2012-4248

The Amazon Kindle Touch before 5.1.2 does not properly restrict access to the libkindleplugin.so NPAPI plugin interface, which might allow remote attackers to have an unspecified impact via vectors involving the 1 dev.log, 2 lipc.set, 3 lipc.get, or 4 todo.scheduleItems method, a different...

10CVSS6.7AI score0.03722EPSS
Exploits0References1
NVD
NVD
added 2012/08/12 5:55 p.m.25 views

CVE-2012-4249

The Amazon Lab126 com.lab126.system sendEvent implementation on the Kindle Touch before 5.1.2 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a string, as demonstrated by using lipc-set-prop to set an LIPC property, a different vulnerability than...

10CVSS7.3AI score0.03722EPSS
Exploits0References3
NVD
NVD
added 2012/08/12 5:55 p.m.26 views

CVE-2012-4248

The Amazon Kindle Touch before 5.1.2 does not properly restrict access to the libkindleplugin.so NPAPI plugin interface, which might allow remote attackers to have an unspecified impact via vectors involving the 1 dev.log, 2 lipc.set, 3 lipc.get, or 4 todo.scheduleItems method, a different...

9.3CVSS6.6AI score0.03489EPSS
Exploits0References3
Prion
Prion
added 2012/08/12 5:55 p.m.20 views

Design/Logic Flaw

The Amazon Kindle Touch before 5.1.2 does not properly restrict access to the libkindleplugin.so NPAPI plugin interface, which might allow remote attackers to have an unspecified impact via vectors involving the 1 dev.log, 2 lipc.set, 3 lipc.get, or 4 todo.scheduleItems method, a different...

9.3CVSS7.1AI score0.03722EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2012/08/12 5:55 p.m.18 views

Code injection

The Amazon Lab126 com.lab126.system sendEvent implementation on the Kindle Touch before 5.1.2 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a string, as demonstrated by using lipc-set-prop to set an LIPC property, a different vulnerability than...

10CVSS7.7AI score0.03722EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2012/08/12 5:0 p.m.29 views

CVE-2012-4249

The Amazon Lab126 com.lab126.system sendEvent implementation on the Kindle Touch before 5.1.2 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a string, as demonstrated by using lipc-set-prop to set an LIPC property, a different vulnerability than...

7.2AI score0.03722EPSS
Exploits0References3
CVE
CVE
added 2012/08/12 5:0 p.m.52 views

CVE-2012-4249

The vulnerability CVE-2012-4249 affects Amazon Kindle Touch prior to 5.1.2, specifically the com.lab126.system sendEvent implementation. The issue allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a string, demonstrated by lipc-set-prop to set an LIPC pr...

10CVSS7.5AI score0.03722EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2012/08/12 5:0 p.m.30 views

CVE-2012-4248

The Amazon Kindle Touch before 5.1.2 does not properly restrict access to the libkindleplugin.so NPAPI plugin interface, which might allow remote attackers to have an unspecified impact via vectors involving the 1 dev.log, 2 lipc.set, 3 lipc.get, or 4 todo.scheduleItems method, a different...

6.6AI score0.03489EPSS
Exploits0References3
CVE
CVE
added 2012/08/12 5:0 p.m.53 views

CVE-2012-4248

The data confirms CVE-2012-4248 affects Kindle Touch prior to 5.1.2, where access to the libkindleplugin.so NPAPI plugin interface is not properly restricted. This may allow remote attackers to cause unspecified impact via the dev.log, lipc.set, lipc.get, or todo.scheduleItems methods. The root c...

9.3CVSS6.8AI score0.03489EPSS
Exploits0References3Affected Software1
CERT
CERT
added 2012/07/30 12:0 a.m.45 views

Amazon Kindle Touch libkindleplugin scriptable browser plugin vulnerability

Overview Kindle Touch 5.1.0 contains a scriptable browser plugin which can be invoked by accessing a malicious web page. Description It has been reported that Kindle Touch 5.1.0 has introduced a NPAPI plugin /usr/lib/libkindleplugin.so symlinked to /usrl/lib/browser/plugins/libkindleplugin.so tha...

7.3AI score
Exploits0References1
myhack58
myhack58
added 2012/07/19 12:0 a.m.44 views

Kindle Touch a remote code execution vulnerability-vulnerability warning-the black bar safety net

I don't know if amazon kindle fans? Recent foreign media reports, the Kindle Touch appears a remote executable code vulnerabilities. For Kindle Touch 5.1.0 firmware version, you can remotely execute code, The/etc/shadow file is sent to the specifiedweb server. Vulnerability relates to...

2.6AI score
Exploits0
Rows per page
Query Builder