CVE-2015-1501

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Server And Application Monitor
Vendor: CVE Published:; 16 February 2015

Summary

The factory.loadExtensionFactory function in TSUnicodeGraphEditorControl in SolarWinds Server and Application Monitor (SAM) allow remote attackers to execute arbitrary code via a UNC path to a crafted binary.

References

http://www.zerodayinitiative.com/advisories/ZDI-15-043/

x_refsource_MISC

EPSS Score

50% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 16, 2015
Vulnerability Reserved
Feb 5, 2015