CVSS: 6.9EPSS: 0%CPEs: 3EXPL: 0CVE-2015-0884
https://notcve.org/view.php?id=CVE-2015-0884
Unquoted Windows search path vulnerability in Toshiba Bluetooth Stack for Windows before 9.10.32(T) and Service Station before 2.2.14 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character. Vulnerabilidad de la búsqueda de ruta en Windows sin entrecomillar en Toshiba Bluetooth Stack para Windows anterior a 9.10.32(T) y Service Station anterior a 2.2.14 permite a usuarios locales ganar privilegios a través de una aplicación troyana con un nombre compuesto de una subcadena inicial de una ruta que contiene un caracter de espacio. • http://jvn.jp/vu/JVNVU99205169/index.html http://www.kb.cert.org/vuls/id/632140 http://www.securitytracker.com/id/1031825 http://www.support.toshiba.com/sscontent?contentId=4007185 http://www.support.toshiba.com/sscontent?contentId=4007187 •
CVSS: 8.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4981
https://notcve.org/view.php?id=CVE-2012-4981
Toshiba ConfigFree 8.0.38 has a CF7 File Remote Command Execution Vulnerability Toshiba ConfigFree versión 8.0.38, presenta una Vulnerabilidad de Ejecución de Comandos Remota de Archivos CF7. • http://www.securityfocus.com/bid/55643 https://exchange.xforce.ibmcloud.com/vulnerabilities/78800 • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4980
https://notcve.org/view.php?id=CVE-2012-4980
Multiple stack-based buffer overflows in CFProfile.exe in Toshiba ConfigFree Utility 8.0.38 allow user-assisted attackers to execute arbitrary code. Múltiples desbordamientos de búfer en la región heap de la memoria en el archivo CFProfile.exe en Toshiba ConfigFree Utility versión 8.0.38, permiten a atacantes asistidos por el usuario ejecutar código arbitrario • http://www.securityfocus.com/bid/55644 https://exchange.xforce.ibmcloud.com/vulnerabilities/78801 • CWE-787: Out-of-bounds Write •
CVSS: 6.9EPSS: 0%CPEs: 1EXPL: 0CVE-2009-0657
https://notcve.org/view.php?id=CVE-2009-0657
Toshiba Face Recognition 2.0.2.32 allows physically proximate attackers to obtain notebook access by presenting a large number of images for which the viewpoint and lighting have been modified to match a stored image of the authorized notebook user. Toshiba Face Recognition v2.0.2.32 permite a atacantes fisicamente proximos obtener acceso al equipo mediante la presentacion de un largo numero de imagenes en las que el punto de vista y la luz ha sido modificada para que coincida con la del usuario legitimo del equipo. • http://security.bkis.vn/?p=292 http://www.blackhat.com/html/bh-dc-09/bh-dc-09-archives.html#Nguyen http://www.blackhat.com/presentations/bh-dc-09/Nguyen/BlackHat-DC-09-Nguyen-Face-not-your-password.pdf http://www.securityfocus.com/archive/1/498997 http://www.securityfocus.com/bid/32700 https://exchange.xforce.ibmcloud.com/vulnerabilities/48963 • CWE-255: Credentials Management Errors •
CVSS: 6.8EPSS: 18%CPEs: 1EXPL: 3CVE-2008-0399 – Toshiba Surveillance - 'MeIpCamX.dll 1.0.0.4' Remote Buffer Overflow
https://notcve.org/view.php?id=CVE-2008-0399
Multiple buffer overflows in Toshiba Surveillance (Surveillix) RecordSend ActiveX control (MeIpCamX.DLL 1.0.0.4) allow remote attackers to execute arbitrary code via long arguments to the (1) SetPort and (2) SetIpAddress methods. Múltiples desbordamientos de búfer en el controlador ActiveXToshiba Surveillance (Surveillix) RecordSend MeIpCamX.DLL 1.0.0.4) permite a atacantes remotos ejecutar código de su elección a través de argumentos largos en los métodos (1) SetPort y (2) SetIpAddress. • https://www.exploit-db.com/exploits/4946 http://retrogod.altervista.org/rgod_toshiba_control.html http://secunia.com/advisories/28557 http://www.securityfocus.com/bid/27360 http://www.vupen.com/english/advisories/2008/0214 https://exchange.xforce.ibmcloud.com/vulnerabilities/39792 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •