Dear Valued Sony Customer,
Sony has recently identified a software vulnerability in several VAIO Personal Computer models which have been sold between June 2011 and January 2012. The vulnerability could potentially allow an arbitrary code to run on the affected products should a customer visit a web-site made by a malicious attacker. This is due to a buffer overflow in the network connecting application software installed in these affected VAIO computers. A security update program that will resolve this issue has been released and Sony recommends that all customers who have the affected VAIO models immediately install this update program. If you currently use the VAIO Update program on your notebook with default setting activate, the update program is automatically applied.
- Affected Software
VAIO Easy Connect Ver.1.0.0 and Ver.1.1.0 (Please click here to verify the version of the software)
- Affected Models
VAIO Personal Computers of which the above software are preinstalled. To check if your VAIO notebook is affected, please click here.
- Update Program
VAIO Easy Connect Security update program
If you have any questions or require assistance, please contact your local Sony service centre. A list of the Sony service centres can be found in the Service Centres page.
We apologize for any inconvenience this may have caused and your kind understanding is much appreciated.
Personal information, such as your name, mailing address and/or telephone number, provided to the Sony service centre shall be kept and used by Sony only for responding to your inquiries related to this announcement. In certain cases, your personal information may be given to third-party companies to whom Sony has consigned certain elements of such service. In this event, Sony will ensure that such third-party companies abide by the same strict guidelines with regard to the use, storage and disposal of your personal information.
Please contact your local Sony service centre if you wish to inquire, modify, erase or suspend use of your personal information provided in connection with this announcement. (Please be advised that in the case of erasing or suspending use of your personal information, Sony might not be able to provide appropriate services in accordance with the purpose of usage mentioned above.)
Sony would like to thank High-Tech Bridge SA Security Research Lab for reporting the relevant issues and working with Sony to help protect our customers.