CVE-2015-0795
NetIQ Security Solutions for iSeries 8.1 - Remote Code Execution via SafeShellExecute Method
Title source: llmDescription
Multiple stack-based buffer overflows in the SafeShellExecute method in the NetIQExecObject.NetIQExec.1 ActiveX control in NetIQExec.dll in NetIQ Security Solutions for iSeries 8.1 allow remote attackers to execute arbitrary code via long arguments, aka ZDI-CAN-2699.
References (2)
Core 2
Core References
Various Sources x_refsource_confirm
https://www.netiq.com/support/kb/doc.php?id=7016656
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-340/
Scores
EPSS
0.0342
EPSS Percentile
87.6%
Details
CWE
CWE-119
Status
published
Products (1)
microfocus/security_solutions_for_iseries
8.1
Published
Jul 18, 2015
Tracked Since
Feb 18, 2026