Buffer overflow in Solarwinds Dameware_mini_remote_control

CVE-2015-8220

Stack-based buffer overflow in the URI handler in DWRCC.exe in SolarWinds DameWare Mini Remote Control before 12.0 HotFix 1 allows remote attackers to execute arbitrary code via a crafted commandline argument in a link.

Vulnerability class: Buffer Overflow

EPSS: 0.565 (98.2th percentile) — read the EPSS interpretation.

Affected products

Solarwinds Dameware_mini_remote_control
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

cve@mitre.org (x_refsource_MISC)
cve@mitre.org (x_refsource_CONFIRM, Patch, Vendor Advisory)