Buffer overflow in Samsung Net-i_viewer

CVE-2012-4335

Samsung NET-i viewer 1.37.120316 allows remote attackers to cause a denial of service (infinite loop) via a negative size value in a TCP request to (1) NiwMasterService or (2) NiwStorageService. NOTE: some of these details are obtained fr…

Vulnerability class: Buffer Overflow

EPSS: 0.122 (94.0th percentile) — read the EPSS interpretation.

Affected products

Samsung Net-i_viewer — versions 1.37.120316
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

netiware-storage-dos(75066) (vdb-entry, x_refsource_XF)
18765 (Exploit, exploit, x_refsource_EXPLOIT-DB)
53193 (Exploit, vdb-entry, x_refsource_BID)
48825 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)