CVE-2006-4289 - Buffer overflow in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x before 20060626 allows remote attac

CVE-2006-4289

Summary

Buffer overflow in Sony VAIO Media Server 2.x, 3.x, 4.x, and 5.x before 20060626 allows remote attackers to execute arbitrary code via unspecified vectors.

References

Vulnerable Configurations

cpe:2.3:h:sony:vaio_media_server:2.0:*:*:*:*:*:*:*
cpe:2.3:h:sony:vaio_media_server:2.0:*:*:*:*:*:*:*
cpe:2.3:h:sony:vaio_media_server:3.0:*:*:*:*:*:*:*
cpe:2.3:h:sony:vaio_media_server:3.0:*:*:*:*:*:*:*
cpe:2.3:h:sony:vaio_media_server:4.0:*:*:*:*:*:*:*
cpe:2.3:h:sony:vaio_media_server:4.0:*:*:*:*:*:*:*
cpe:2.3:h:sony:vaio_media_server:5.0:*:*:*:*:*:*:*
cpe:2.3:h:sony:vaio_media_server:5.0:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 20-07-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	19561
confirm	http://kb.sony-europe.com/kb/solutions/en/V00000_V00499/v00246.html http://www.css.ap.sony.com/VAIO/Website/General/ImportantNotices.aspx?Section=SN&file=/vaio/importantnotice/security_notice/SecurityNotice_VMIS.htm
misc	http://www.pentest.co.uk/documents/ptl-2006-02.html
secunia	21512
vupen	ADV-2006-3287
xf	sony-vaio-bo(28423)

Last major update

20-07-2017 - 01:32

Published

22-08-2006 - 17:04

Last modified

20-07-2017 - 01:32