CVE-2015-0884

Published: Feb 28, 2015Modified: May 6, 2026

6.9

Vector

AV:L/AC:M/Au:N/C:C/I:C/A:C

Exploitability: 3.4 / Impact: 10.0

Source: NVD

Description

Unquoted Windows search path vulnerability in Toshiba Bluetooth Stack for Windows before 9.10.32(T) and Service Station before 2.2.14 allows local users to gain privileges via a Trojan horse application with a name composed of an initial substring of a path that contains a space character.

Affected (2)

Products: Toshiba: Bluetooth Stack, Service Station

2 products

Bluetooth Stack

Service Station

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Toshiba Bluetooth Stack	Version 9.10.27(t)

Running on/with	Platform Versions
Microsoft Windows	All versions

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Toshiba Service Station	Up to 2.2.13

References (10)

http://jvn.jp/vu/JVNVU99205169/index.html

Source: vultures@jpcert.or.jp

http://www.kb.cert.org/vuls/id/632140

Source: vultures@jpcert.or.jp

Third Party AdvisoryUS Government Resource

http://www.securitytracker.com/id/1031825

Source: vultures@jpcert.or.jp

http://www.support.toshiba.com/sscontent?contentId=4007185

Source: vultures@jpcert.or.jp

http://www.support.toshiba.com/sscontent?contentId=4007187

Source: vultures@jpcert.or.jp

http://jvn.jp/vu/JVNVU99205169/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.kb.cert.org/vuls/id/632140

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://www.securitytracker.com/id/1031825

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.support.toshiba.com/sscontent?contentId=4007185

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.support.toshiba.com/sscontent?contentId=4007187

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.