New! Vulnerability Priority Rating (VPR)
Tenable calculates a dynamic VPR for every vulnerability. VPR combines vulnerability information with threat intelligence and machine learning algorithms to predict which vulnerabilities are most likely to be exploited in attacks. Read more about what VPR is and how it's different from CVSS.
VPR Score: 7.4
Synopsis
The remote host has ActiveX controls that are affected by multiple vulnerabilities.
Description
The version of Samsung Kies ActiveX controls installed on the remote host is affected by multiple vulnerabilities :
- A vulnerability in GetDataTable() method in 'DCAPARAGONGM.dll' is affected by a NULL pointer dereference that could be used to perform a denial of service of the program. (CVE-2012-3806)
- Multiple vulnerabilities exist affecting CmdAgentLib in 'CmdAgent.dll'. An attacker may be able to exploit this issue to gain elevated privileges. (CVE-2012-3807, CVE-2012-3808 CVE-2012-3809, CVE-2012-3810)
Solution
Upgrade to Samsung Kies 2.5.0.12094_27_11 or later.