1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: Samsung NET-i ware CVE-2012-4333

Web Attack: Samsung NET-i ware CVE-2012-4333

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects an attempt to exploit a buffer overflow vulnerability in Samsung NET-i ware which could result in a denial of service or remote code execution.

Additional Information

Samsung NET-i ware is prone to multiple buffer overflow conditions related to the BackUpToAvi ActiveX Control.

The issue is triggered when parsing an overly long string in the 'BackUpToAvi' property resulting in a heap-based buffer overflow.

Affected

  • Samsung NET-i ware 1.37 and prior are vulnerable; other versions may also be affected.
  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube