EUVD-2015-7933

Malware in sbrugna...

EUVD-2014-9090

Malware in sbrugna...

COMMAX WebViewer ActiveX Control 2.1.4.5 Buffer Overflow

COMMAX WebViewer ActiveX Control 2.1.4.5 CommaxWebViewer.ocx Buffer Overflow Vendor: COMMAX Co., Ltd. Prodcut web page: https://www.commax.com Affected version: 2.1.4.5 Summary: COMMAX activex web viewer client 32bit for COMMAX DVR/NVR. Desc: The vulnerability is caused due to a boundary error in...

Samsung SmartViewer CNC_Ctrl ActiveX Control Out of Bounds Indexing (CVE-2015-8040)

A remote code execution vulnerability exists in Samsung SmartViewer. The vulnerability is due to improper validation of the index parameter provided to the rtspgetdlsendtime method of the CNCCtrl ActiveX Control. A remote, unauthenticated attacker can exploit this vulnerability by enticing the...

Design/Logic Flaw

The rtspgetdlsendtime method in the CNCCtrl control in Samsung SmartViewer allows remote attackers to execute arbitrary code via an index value...

CVE-2015-8040

The CVE-2015-8040 issue affects Samsung SmartViewer’s CNC_Ctrl ActiveX control, specifically the rtsp_getdlsendtime method. The root cause is improper validation of a user-supplied index value, enabling a remote attacker to execute arbitrary code. Exploitation would occur when a target user visit...

Samsung SmartViewer CNC_Ctrl ActiveX Control Buffer Overflow (CVE-2012-4333; CVE-2014-9265)

A stack buffer overflow vulnerability exists in Samsung SmartViewer. The vulnerability is due to improper validation of a parameter provided to the BackupToAvi method of the CNCCtrl ActiveX Control. A remote, unauthenticated attacker can exploit this vulnerability by enticing the target user to...