Arbitrary Code Execution Vulnerability in Samsung SmartViewer

Arbitrary Code Execution Vulnerability in Samsung SmartViewer

CVE-2015-8039 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors to the (1) DVRSetupSave method in the STWAxConfig control or (2) SendCustomPacket method in the STWAxConfigNVR control, which trigger an untrusted pointer dereference.

Learn more about our Web Application Penetration Testing UK.