The factory.loadExtensionFactory function in TSUnicodeGraphEditorControl in SolarWinds Server and Application Monitor (SAM) allow remote attackers to execute arbitrary code via a UNC path to a crafted binary.
References
Link | Resource |
---|---|
http://www.zerodayinitiative.com/advisories/ZDI-15-043/ |
Configurations
Information
Published : 2015-02-16 07:59
Updated : 2015-02-17 09:33
NVD link : CVE-2015-1501
Mitre link : CVE-2015-1501
JSON object : View
CWE
CWE-94
Improper Control of Generation of Code ('Code Injection')
Products Affected
solarwinds
- server_and_application_monitor