Vulnerability Details : CVE-2012-2619
Potential exploit
The Broadcom BCM4325 and BCM4329 Wi-Fi chips, as used in certain Acer, Apple, Asus, Ford, HTC, Kyocera, LG, Malata, Motorola, Nokia, Pantech, Samsung, and Sony products, allow remote attackers to cause a denial of service (out-of-bounds read and Wi-Fi outage) via an RSN 802.11i information element.
Vulnerability category: Input validationDenial of service
Products affected by CVE-2012-2619
- cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:6.0.1:*:*:*:*:*:*:*
- cpe:2.3:o:apple:iphone_os:6.0:*:*:*:*:*:*:*
- cpe:2.3:h:broadcom:bcm4325:*:*:*:*:*:*:*:*
- cpe:2.3:h:broadcom:bcm4329:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2012-2619
16.48%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 96 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2012-2619
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST |
CWE ids for CVE-2012-2619
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by: nvd@nist.gov (Primary)
References for CVE-2012-2619
-
http://lists.apple.com/archives/security-announce/2013/Jan/msg00001.html
Apple - Lists.apple.com
-
http://www.coresecurity.com/content/broadcom-input-validation-BCM4325-BCM4329
Broadcom DoS on BCM4325 and BCM4329 devices | Core SecurityExploit
-
http://lists.apple.com/archives/security-announce/2013/Jan/msg00000.html
Apple - Lists.apple.com
-
http://www.kb.cert.org/vuls/id/160027
VU#160027 - Broadcom BCM4325 and BCM4329 wireless chipset denial-of-service vulnerabilityUS Government Resource
-
http://support.apple.com/kb/HT5643
About the security content of Apple TV 5.2 - Apple Support
-
http://support.apple.com/kb/HT5642
About the security content of iOS 6.1 Software Update - Apple Support
Jump to