Skip to main content

D6000 Firmware CVE-2012-4329

HIGH
Buffer Overflow (CWE-119)
2012-08-14 cve@mitre.org
7.8
CVSS 2.0 · NVD
Share

Severity by source

NVD PRIMARY
7.8 HIGH
AV:N/AC:L/Au:N/C:N/I:N/A:C

Primary rating from NVD · only source for this CVE.

CVSS VectorNVD

AV:N/AC:L/Au:N/C:N/I:N/A:C
Attack Vector
Network
Attack Complexity
Low
Confidentiality
None
Integrity
None
Availability
C

Lifecycle Timeline

1
CVE Published
Aug 14, 2012 - 22:55 cve.org
HIGH 7.8

DescriptionCVE.org

The Samsung D6000 TV and possibly other products allow remote attackers to cause a denial of service (continuous restart) via a crafted controller name.

AnalysisAI

The Samsung D6000 TV and possibly other products allow remote attackers to cause a denial of service (continuous restart) via a crafted controller name. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 54.1%.

Technical ContextAI

This vulnerability is classified as Buffer Overflow (CWE-119), which allows attackers to corrupt memory to execute arbitrary code or crash the application. The Samsung D6000 TV and possibly other products allow remote attackers to cause a denial of service (continuous restart) via a crafted controller name. Affected products include: Samsung D6000 Firmware.

RemediationAI

No vendor patch is available at time of analysis. Monitor vendor advisories for updates. Use memory-safe languages or bounds-checking. Enable ASLR, DEP/NX, stack canaries. Use safe string functions.

CVE-2012-4330 HIGH POC
7.8 Aug 14

The Samsung D6000 TV and possibly other products allows remote attackers to cause a denial of service (crash) via a long

CVE-2020-35799 CRITICAL
9.8 Dec 30

Certain NETGEAR devices are affected by a stack-based buffer overflow by an unauthenticated attacker. Rated critical sev

CVE-2020-35800 CRITICAL
9.4 Dec 30

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated critical severity (CVSS 9.4)

CVE-2021-45641 HIGH
8.8 Dec 26

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated high severity (CVSS 8.8), th

CVE-2020-35787 HIGH
8.0 Dec 30

Certain NETGEAR devices are affected by a buffer overflow by an authenticated user. Rated high severity (CVSS 8.0), this

CVE-2015-8289 HIGH
7.5 Jun 20

The password-recovery feature on NETGEAR D3600 devices with firmware 1.0.0.49 and D6000 devices with firmware 1.0.0.49 a

CVE-2021-45640 HIGH
7.2 Dec 26

Certain NETGEAR devices are affected by incorrect configuration of security settings. Rated high severity (CVSS 7.2), th

CVE-2021-38525 HIGH
7.2 Aug 11

Certain NETGEAR devices are affected by a stack-based buffer overflow by an authenticated user. Rated high severity (CVS

CVE-2021-45550 MEDIUM
6.8 Dec 26

Certain NETGEAR devices are affected by command injection by an authenticated user. Rated medium severity (CVSS 6.8), th

CVE-2015-8288 MEDIUM
5.9 Jun 20

NETGEAR D3600 devices with firmware 1.0.0.49 and D6000 devices with firmware 1.0.0.49 and earlier use the same hardcoded

CVE-2021-38534 MEDIUM
4.8 Aug 11

Certain NETGEAR devices are affected by stored XSS. Rated medium severity (CVSS 4.8), this vulnerability is remotely exp

CVE-2021-38514 LOW
2.7 Aug 11

Certain NETGEAR devices are affected by authentication bypass. Rated low severity (CVSS 2.7), this vulnerability is remo

Share

CVE-2012-4329 vulnerability details – vuln.today

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy