What is CVE-2012-4330?

CVE-2012-4330 is a vulnerability in Samsung D6000, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2012-08-14.

Is CVE-2012-4330 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Samsung D6000

CVE-2012-4330

The Samsung D6000 TV and possibly other products allows remote attackers to cause a denial of service (crash) via a long string in certain fields, as demonstrated by the MAC address field, possibly a buffer overflow.

Vulnerability class: Buffer Overflow

EPSS: 0.511 (97.9th percentile) — read the EPSS interpretation.

Affected products

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

53161 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_BID)
20120419 Vulnerabilities in Samsung TV (remote controller protocol) (mailing-list, Exploit, x_refsource_BUGTRAQ, Broken Link)
81222 (x_refsource_OSVDB, vdb-entry, Broken Link)
samsungtv-string-dos(74928) (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_XF)
cve@mitre.org (Exploit, x_refsource_MISC)
18751 (Exploit, exploit, Third Party Advisory, VDB Entry, x_refsource_EXPLOIT-DB)
1026976 (Third Party Advisory, VDB Entry, vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2012-4330?: CVE-2012-4330 is a vulnerability in Samsung D6000, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2012-08-14.
Is CVE-2012-4330 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.