Buffer overflow in Samsung Net-i_viewer

CVE-2012-4250

Stack-based buffer overflow in the RequestScreenOptimization function in the XProcessControl.ocx ActiveX control in msls31.dll in Samsung NET-i viewer 1.37 allows remote attackers to execute arbitrary code via a long string in the first ar…

Vulnerability class: Buffer Overflow

EPSS: 0.252 (96.3th percentile) — read the EPSS interpretation.

Affected products

Samsung Net-i_viewer — versions 1.37
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

53317 (Exploit, vdb-entry, x_refsource_BID)
samsung-netiviewer-activex-bo(75310) (vdb-entry, x_refsource_XF)
18808 (Exploit, exploit, x_refsource_EXPLOIT-DB)