CVE-2015-1500

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Server And Application Monitor
Vendor: CVE Published:; 16 February 2015

Summary

Multiple stack-based buffer overflows in the TSUnicodeGraphEditorControl in SolarWinds Server and Application Monitor (SAM) allow remote attackers to execute arbitrary code via unspecified vectors to (1) graphManager.load or (2) factory.load.

References

http://www.zerodayinitiative.com/advisories/ZDI-15-044/

x_refsource_MISC

http://www.zerodayinitiative.com/advisories/ZDI-15-042/

x_refsource_MISC

EPSS Score

92% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 16, 2015
Vulnerability Reserved
Feb 5, 2015