Описание
The Bluetooth Stack 2.1 in Microsoft Windows Vista SP1 and SP2 and Windows 7 Gold and SP1 does not prevent access to objects in memory that (1) were not properly initialized or (2) have been deleted, which allows remote attackers to execute arbitrary code via crafted Bluetooth packets, aka "Bluetooth Stack Vulnerability."
Ссылки
- Third Party AdvisoryUS Government Resource
- PatchVendor Advisory
- Tool Signature
- Third Party AdvisoryUS Government Resource
- PatchVendor Advisory
- Tool Signature
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:bluetooth:bluetooth_stack:2.1:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_7:*:sp1:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:*:sp1:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows_vista:*:sp2:*:*:*:*:*:*
EPSS
Процентиль: 64%
0.00476
Низкий
8.8 High
CVSS3
8.3 High
CVSS2
Дефекты
CWE-94
Связанные уязвимости
CVSS3: 8.8
github
больше 3 лет назад
The Bluetooth Stack 2.1 in Microsoft Windows Vista SP1 and SP2 and Windows 7 Gold and SP1 does not prevent access to objects in memory that (1) were not properly initialized or (2) have been deleted, which allows remote attackers to execute arbitrary code via crafted Bluetooth packets, aka "Bluetooth Stack Vulnerability."
EPSS
Процентиль: 64%
0.00476
Низкий
8.8 High
CVSS3
8.3 High
CVSS2
Дефекты
CWE-94