exploitDog

CVE-2012-4334

Опубликовано: 14 авг. 2012

Источник: nvd

CVSS2: 10

EPSS Средний

Описание

The ConnectDDNS method in the (1) STWConfigNVR 1.1.13.15 and (2) STWConfig 1.1.14.13 ActiveX controls in Samsung NET-i viewer 1.37.120316 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: some of these details are obtained from third party information.

Ссылки

http://secunia.com/advisories/48965
Vendor Advisory
http://www.exploit-db.com/exploits/18765
Exploit
http://www.securityfocus.com/bid/53193
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/75069
http://secunia.com/advisories/48965
Vendor Advisory
http://www.exploit-db.com/exploits/18765
Exploit
http://www.securityfocus.com/bid/53193
Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/75069

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:samsung:net-i_viewer:1.37.120316:*:*:*:*:*:*:*

EPSS

Процентиль: 97%

0.35693

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-r993-4vgm-6r2p

github

больше 3 лет назад

The ConnectDDNS method in the (1) STWConfigNVR 1.1.13.15 and (2) STWConfig 1.1.14.13 ActiveX controls in Samsung NET-i viewer 1.37.120316 allows remote attackers to execute arbitrary code via unspecified vectors. NOTE: some of these details are obtained from third party information.

EPSS

Процентиль: 97%

0.35693

Средний

10 Critical

CVSS2

Дефекты

NVD-CWE-Other