CVE-2015-1501

SolarWinds Server and Application Monitor - Remote Code Execution via UNC Path in TSUnicodeGraphEditorControl

Title source: llm
STIX 2.1

Description

The factory.loadExtensionFactory function in TSUnicodeGraphEditorControl in SolarWinds Server and Application Monitor (SAM) allow remote attackers to execute arbitrary code via a UNC path to a crafted binary.

References (1)

Core 1
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-043/

Scores

EPSS 0.2089
EPSS Percentile 95.7%

Details

CWE
CWE-94
Status published
Products (1)
solarwinds/server_and_application_monitor
Published Feb 16, 2015
Tracked Since Feb 18, 2026