Stack-based Buffer Overflow in SolarWinds Server and Application Monitor
CVE-2015-1500

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Server And Application Monitor
Vendor: CVE Published:; 16 February 2015

What is CVE-2015-1500?

Multiple stack-based buffer overflow vulnerabilities within the TSUnicodeGraphEditorControl of SolarWinds Server and Application Monitor can be exploited by remote attackers. Through unspecified vectors, attackers may manipulate the application to execute arbitrary code. This vulnerability can potentially compromise the integrity and availability of the affected systems, highlighting the need for immediate attention and patching.

References

http://www.zerodayinitiative.com/advisories/ZDI-15-044/

x_refsource_MISC

http://www.zerodayinitiative.com/advisories/ZDI-15-042/

x_refsource_MISC

EPSS Score

42% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Feb 16, 2015
Vulnerability Reserved
Feb 5, 2015

Solarwinds

What is CVE-2015-1500?

References

EPSS Score

Timeline