NVD

Id
23028  
Name
CVE-2015-0555  
Description
Buffer overflow in the XnsSdkDeviceIpInstaller.ocx ActiveX control in Samsung iPOLiS Device Manager 1.12.2 allows remote attackers to execute arbitrary code via a long string in the first argument to the (1) ReadConfigValue or (2) WriteConfigValue function.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.4  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:P/I:P/A:P)  
Pub Date
2017-01-19  
Published
2015-02-24  
Modified Date
2016-03-31  
Seq
2015-0555  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
122613 23028 CVE-2015-0555 http://packetstormsecurity.com/files/131421/Samsung-iPOLiS-1.12.2-ReadConfigValue-Remote-Code-Execution.html  View
122614 23028 CVE-2015-0555 20150221 Samsung iPolis XnsSdkDeviceIpInstaller.ocx ActiveX Remote Code Execution Vulnerabilities  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
6266 JVNDB-2015-001586 Samsung iPOLiS Device Manager の XnsSdkDeviceIpInstaller.ocx ActiveX コントロールにおけるバッファオーバーフローの脆弱性 Samsung iPOLiS Device Manager の XnsSdkDeviceIpInstaller.ocx ActiveX コントロールには、バッファオーバーフローの脆弱性が存在します。 CVE-2015-0555 77766 CVE-2015-0555 23028 6.8 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-001586.html 2015-02-21 2015-02-25 View