CVE-2015-8039
Samsung SmartViewer - Remote Code Execution via DVRSetupSave or SendCustomPacket Method
Title source: llmDescription
Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors to the (1) DVRSetupSave method in the STWAxConfig control or (2) SendCustomPacket method in the STWAxConfigNVR control, which trigger an untrusted pointer dereference.
References (3)
Core 3
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/77079
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-463
Third Party Advisory x_refsource_misc
http://www.zerodayinitiative.com/advisories/ZDI-15-462
Scores
EPSS
0.0215
EPSS Percentile
84.5%
Details
Status
published
Products (1)
samsung/smartviewer
Published
Nov 02, 2015
Tracked Since
Feb 18, 2026