Sign-up

ID

VAR-201211-0282


CVE

CVE-2012-5174


TITLE

Multiple KYOCERA mobile devices may reboot during email reception

Trust: 0.8

sources: JVNDB: JVNDB-2012-000105

DESCRIPTION

The KYOCERA AH-K3001V, AH-K3002V, WX300K, WX310K, WX320K, and WX320KR devices allow remote attackers to cause a denial of service (persistent reboot) via an e-mail message in an invalid format. When this issue occurs, the device will always reboot when attempting to receive the invalid email. Masashi Shimizu reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.When receiving an invalid email, the device will always reboot, therefore emails cannot be received. KYOCERA is a Japanese electronic equipment manufacturer. Multiple Kyocera mobile devices are prone to a denial-of-service vulnerability. Attackers may leverage this issue to crash the affected mobile devices, denying service to legitimate users

Trust: 2.43

sources: NVD: CVE-2012-5174 // JVNDB: JVNDB-2012-000105 // CNVD: CNVD-2012-7216 // BID: 56886

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2012-7216

AFFECTED PRODUCTS

vendor:kyoceramodel:ah-k3001vscope:eqversion: -

Trust: 1.6

vendor:kyoceramodel:xw320kscope:eqversion: -

Trust: 1.6

vendor:kyoceramodel:xw300kscope:eqversion: -

Trust: 1.6

vendor:kyoceramodel:xw320krscope:eqversion: -

Trust: 1.6

vendor:kyoceramodel:xw310kscope:eqversion: -

Trust: 1.6

vendor:kyoceramodel:ah-k3002vscope:eqversion: -

Trust: 1.6

vendor:kyoceramodel:ah-k3001vscope: - version: -

Trust: 1.4

vendor:kyoceramodel:ah-k3002vscope: - version: -

Trust: 1.4

vendor:kyoceramodel:wx300kscope: - version: -

Trust: 1.4

vendor:kyoceramodel:wx310kscope: - version: -

Trust: 1.4

vendor:kyoceramodel:wx320kscope: - version: -

Trust: 1.4

vendor:kyoceramodel:wx320krscope: - version: -

Trust: 1.4

vendor:kyoceramodel:wx320krscope:eqversion:0

Trust: 0.3

vendor:kyoceramodel:wx320kscope:eqversion:0

Trust: 0.3

vendor:kyoceramodel:wx310kscope:eqversion:0

Trust: 0.3

vendor:kyoceramodel:wx300kscope:eqversion:0

Trust: 0.3

vendor:kyoceramodel:ah-k3002vscope:eqversion:0

Trust: 0.3

vendor:kyoceramodel:ah-k3001vscope:eqversion:0

Trust: 0.3

sources: CNVD: CNVD-2012-7216 // BID: 56886 // JVNDB: JVNDB-2012-000105 // CNNVD: CNNVD-201211-578 // NVD: CVE-2012-5174

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2012-5174
value: HIGH

Trust: 1.0

IPA: JVNDB-2012-000105
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201211-578
value: HIGH

Trust: 0.6

nvd@nist.gov: CVE-2012-5174
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.0

IPA: JVNDB-2012-000105
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: NONE
impactScore: NONE
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.8

sources: JVNDB: JVNDB-2012-000105 // CNNVD: CNNVD-201211-578 // NVD: CVE-2012-5174

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2012-5174

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201211-578

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201211-578

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2012-000105

PATCH
title:Multiple KYOCERA mobile devices may reboot during email receptionurl:http://jvn.jp/en/jp/JVN83907168/361447/index.html
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2012-000105

EXTERNAL IDS
db:NVDid:CVE-2012-5174
Trust: 3.3
db:JVNid:JVN83907168
Trust: 3.3
db:JVNDBid:JVNDB-2012-000105
Trust: 2.4
db:CNVDid:CNVD-2012-7216
Trust: 0.6
db:JVNid:JVN#83907168
Trust: 0.6
db:CNNVDid:CNNVD-201211-578
Trust: 0.6
db:BIDid:56886
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2012-7216 // 
            
            
            
            BID: 56886 // 
            
            
            
            JVNDB: JVNDB-2012-000105 // 
            
            
            
            CNNVD: CNNVD-201211-578 // 
            
            
            
            NVD: CVE-2012-5174

REFERENCES
url:http://jvn.jp/en/jp/jvn83907168/index.html
Trust: 3.3
url:http://jvn.jp/en/jp/jvn83907168/361447/index.html
Trust: 1.9
url:http://jvndb.jvn.jp/jvndb/jvndb-2012-000105
Trust: 1.6
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2012-5174
Trust: 0.8
url:http://global.kyocera.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2012-7216 // 
            
            
            
            BID: 56886 // 
            
            
            
            JVNDB: JVNDB-2012-000105 // 
            
            
            
            CNNVD: CNNVD-201211-578 // 
            
            
            
            NVD: CVE-2012-5174

CREDITS
Masashi Shimizu
Trust: 0.3
sources:
            
            
            BID: 56886

SOURCES
db:CNVDid:CNVD-2012-7216
db:BIDid:56886
db:JVNDBid:JVNDB-2012-000105
db:CNNVDid:CNNVD-201211-578
db:NVDid:CVE-2012-5174

LAST UPDATE DATE
2025-04-11T23:15:27.697000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2012-7216date:2012-12-04T00:00:00
db:BIDid:56886date:2012-11-30T00:00:00
db:JVNDBid:JVNDB-2012-000105date:2012-11-30T00:00:00
db:CNNVDid:CNNVD-201211-578date:2012-12-05T00:00:00
db:NVDid:CVE-2012-5174date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:CNVDid:CNVD-2012-7216date:2012-12-04T00:00:00
db:BIDid:56886date:2012-11-30T00:00:00
db:JVNDBid:JVNDB-2012-000105date:2012-11-30T00:00:00
db:CNNVDid:CNNVD-201211-578date:2012-11-30T00:00:00
db:NVDid:CVE-2012-5174date:2012-11-30T12:54:17.360