Description
Stack-based buffer overflow in the FindConfigChildeKeyList method in the XNSSDKDEVICE.XnsSdkDeviceCtrlForIpInstaller.1 ActiveX control in Samsung iPOLiS Device Manager before 1.8.7 allows remote attackers to execute arbitrary code via a long value.
References (2)
Core 2
Core References
Patch x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-14-169
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/67823
Scores
EPSS
0.1225
EPSS Percentile
93.9%
Details
CWE
CWE-119
Status
published
Products (1)
samsung/ipolis_device_manager
< 1.8.2
Published
Jun 05, 2014
Tracked Since
Feb 18, 2026