2 matches found
SolarWinds Server and Application Monitor loadExtensionFactory Code Execution (CVE-2015-1501)
A code execution vulnerability exists in SolarWind Server and Application Monitor. A remote unauthenticated attacker can exploit the vulnerability by enticing a target user to visit a malicious website. Successful exploitation could allow arbitrary code execution within security context of the...
CVE-2015-1501
The CVE-2015-1501 flaw affects SolarWinds Server and Application Monitor (SAM) in the TSUnicodeGraphEditorControl: factory.loadExtensionFactory accepts a UNC path to a crafted binary, enabling remote code execution. Multiple sources (e.g., ZDI-15-043, CPAI-2015-0429, CNVD-2015-01241) describe rem...