Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4250

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-4250
Last Modified 14 Aug 2012 12:00:00
Published 13 Aug 2012 02:55:04
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-4250

Summary

Stack-based buffer overflow in the RequestScreenOptimization function in the XProcessControl.ocx ActiveX control in msls31.dll in Samsung NET-i viewer 1.37 allows remote attackers to execute arbitrary code via a long string in the first argument.

Vulnerable Systems

Application

  • Samsung Net-i Viewer 1.37


References

XF - samsung-netiviewer-activex-bo(75310)

BID - 53317

EXPLOIT-DB - 18808


Last Updated: 27 May 2016 10:55:02