CVE-2015-4067

Currently unrated

Key Information:

Vendor: Dell
Status: Netvault Backup
Vendor: CVE Published:; 29 May 2015

Summary

Integer overflow in the libnv6 module in Dell NetVault Backup before 10.0.5 allows remote attackers to execute arbitrary code via crafted template string specifiers in a serialized object, which triggers a heap-based buffer overflow.

References

http://www.zerodayinitiative.com/advisories/ZDI-15-240/

x_refsource_MISC

http://www.securityfocus.com/bid/74841

vdb-entryx_refsource_BID

EPSS Score

61% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 29, 2015
Vulnerability Reserved
May 22, 2015