MS11-053 MS11-053 - Critical : Vulnerability in Bluetooth Stack Could Allow Remote Code Execution (2566220) - Version: 1.0
Version2011-07-12
Severity Rating: Critical
Revision Note: V1.0 (July 12, 2011): Bulletin published.
Summary: This security update resolves a privately reported vulnerability in the Windows Bluetooth Stack. The vulnerability could allow remote code execution if an attacker sent a series of specially crafted Bluetooth packets to an affected system. An attacker could then install programs; view, change, or delete data; or create new accounts with full user rights. This vulnerability only affects systems with Bluetooth capability.
Bulletin details at Microsoft.com
Bulletin details at Microsoft.com
Related CVE Entries
The Bluetooth Stack 2.1 in Microsoft Windows Vista SP1 and SP2 and Windows 7 Gold and SP1 does not prevent access to objects in memory that (1) were not properly initialized or (2) have been deleted, which allows remote attackers to execute arbitrary code via crafted Bluetooth packets, aka "Bluetooth Stack Vulnerability."
Max CVSS
8.8
EPSS Score
67.90%
Published
2011-07-13
Updated
2019-09-27