Stack-Based Buffer Overflow in SolarWinds DameWare Mini Remote Control
CVE-2015-8220

Currently unrated

Key Information:

Vendor: Solarwinds
Status: Dameware Mini Remote Control
Vendor: CVE Published:; 17 November 2015

Summary

A stack-based buffer overflow vulnerability exists in the URI handler of DWRCC.exe in SolarWinds DameWare Mini Remote Control prior to version 12.0 HotFix 1. This flaw enables remote attackers to exploit the system by crafting malicious command-line arguments within a link, potentially leading to the execution of arbitrary code. Users are advised to apply the latest hotfix to mitigate this risk.

References

http://www.zerodayinitiative.com/advisories/ZDI-15-555

x_refsource_MISC

https://thwack.solarwinds.com/message/308973

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Nov 17, 2015