CVE-2015-4647
Panasonic Security API ActiveX SDK < 8.10.14 - Stack-Based Buffer Overflow
Title source: llmDescription
Multiple stack-based buffer overflows in Ipropsapi in Panasonic Security API (PS-API) ActiveX SDK before 8.10.18 allow remote attackers to execute arbitrary code via a long string in the (1) FilePassword property or to the (2) GetStringInfo method.
References (4)
Core 4
Core References
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-260/
Patch x_refsource_confirm
http://security.panasonic.com/pss/security/library/developer.html#SDK
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/75409
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-259/
Scores
EPSS
0.0564
EPSS Percentile
92.0%
Details
CWE
CWE-119
Status
published
Products (1)
panasonic/security_api_activex_sdk
< 8.10.14
Published
Jul 06, 2015
Tracked Since
Feb 18, 2026