NVD

Id
45688  
Name
CVE-2012-4249  
Description
The Amazon Lab126 com.lab126.system sendEvent implementation on the Kindle Touch before 5.1.2 allows context-dependent attackers to execute arbitrary commands via shell metacharacters in a string, as demonstrated by using lipc-set-prop to set an LIPC property, a different vulnerability than CVE-2012-4248.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-01-19  
Published
2012-08-12  
Modified Date
2012-08-13  
Seq
2012-4249  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
229357 45688 CVE-2012-4249 VU#122656  View
229358 45688 CVE-2012-4249 http://www.kb.cert.org/vuls/id/MORO-8WKGBN  View
229359 45688 CVE-2012-4249 http://www.mobileread.com/forums/showthread.php?s=c7953cc553a4aaa36e880b25aa1a6bf6&t=175368  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
27846 JVNDB-2012-003553 Amazon Kindle Touch における任意のコマンドを実行される脆弱性 Amazon Kindle Touch に含まれる Amazon Lab126 com.lab126.system 内の sendEvent の実装には、任意のコマンドを実行される脆弱性が存在します。 CVE-2012-4249 57487 CVE-2012-4249 45688 10 http://jvndb.jvn.jp/ja/contents/2012/JVNDB-2012-003553.html 2012-08-12 2012-08-14 View