Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2012-4335

CWE-119 ā€” Buffer Overflow4 documents4 sources
Severity
7.8HIGH
EPSS
15.2%
top 5.39%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
1
Samsung Net-i Viewer
Timeline
PublishedAug 14
Latest updateMay 17

Description

Samsung NET-i viewer 1.37.120316 allows remote attackers to cause a denial of service (infinite loop) via a negative size value in a TCP request to (1) NiwMasterService or (2) NiwStorageService. NOTE: some of these details are obtained from third party information.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

ā–¶NVDsamsung/net-i_viewer1.37.120316

šŸ”“Vulnerability Details

2
GHSA
GHSA-q8cp-5466-38j6: Samsung NET-i viewer 1ā†—2022-05-17
ā–¶
CVEList
CVE-2012-4335: Samsung NET-i viewer 1ā†—2012-08-14
ā–¶

šŸ’„Exploits & PoCs

1
Exploit-DB
Samsung NET-i ware 1.37 - Multiple Vulnerabilitiesā†—2012-04-22
ā–¶
CVE-2012-4335 (HIGH CVSS 7.8) | Samsung NET-i viewer 1.37.120316 al | cvebase.io