Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4334

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2012-4334
Last Modified 15 Aug 2012 04:33:53
Published 14 Aug 2012 06:55:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4334

Summary

The ConnectDDNS method in the (1) STWConfigNVR 1.1.13.15 and (2) STWConfig 1.1.14.13 ActiveX controls in Samsung NET-i viewer 1.37.120316 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Samsung Net-i Viewer 1.37.120316


References

XF - netiware-activex-code-execution(75069)

BID - 53193

EXPLOIT-DB - 18765

SECUNIA - 48965


Last Updated: 27 May 2016 10:51:40