The Bluetooth Stack 2.1 in Microsoft Windows Vista SP1 and SP2 and Windows 7 Gold and SP1 does not prevent access to objects in memory that (1) were not properly initialized or (2) have been deleted, which allows remote attackers to execute arbitrary code via crafted Bluetooth packets, aka "Bluetooth Stack Vulnerability."
References
Link | Resource |
---|---|
http://www.us-cert.gov/cas/techalerts/TA11-193A.html | Third Party Advisory US Government Resource |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-053 | Patch Vendor Advisory |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A12094 | Tool Signature |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2011-07-13 22:55
Updated : 2024-02-28 11:41
NVD link : CVE-2011-1265
Mitre link : CVE-2011-1265
CVE.ORG link : CVE-2011-1265
JSON object : View
Products Affected
bluetooth
- bluetooth_stack
microsoft
- windows_vista
- windows_7
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')