NVD

Id
45687  
Name
CVE-2012-4248  
Description
The Amazon Kindle Touch before 5.1.2 does not properly restrict access to the libkindleplugin.so NPAPI plugin interface, which might allow remote attackers to have an unspecified impact via vectors involving the (1) dev.log, (2) lipc.set, (3) lipc.get, or (4) todo.scheduleItems method, a different vulnerability than CVE-2012-4249.  
Reject
 
CVSS Version
2  
CVSS Score
9.3  
Severity
High  
CVSS Base Score
9.3  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2012-08-12  
Modified Date
2012-08-13  
Seq
2012-4248  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
229354 45687 CVE-2012-4248 VU#122656  View
229355 45687 CVE-2012-4248 http://www.kb.cert.org/vuls/id/MORO-8WKGBN  View
229356 45687 CVE-2012-4248 http://www.mobileread.com/forums/showthread.php?s=c7953cc553a4aaa36e880b25aa1a6bf6&t=175368  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
27845 JVNDB-2012-003552 Amazon Kindle Touch における脆弱性 Amazon Kindle Touch は、libkindleplugin.so NPAPI プラグインインターフェイスへのアクセスを適切に制限しないため、不特定の影響を受ける脆弱性が存在します。 CVE-2012-4248 57486 CVE-2012-4248 45687 9.3 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003552.html 2012-08-12 2012-08-14 View