Intrusion Prevention

Samsung.SmartViewer.CNC.Ctrl.ActiveX.Control.Buffer.Overflow

Description

This indicates an attack attempt against a Stack Buffer Overflow vulnerability in Samsung SmartViewer.
The vulnerability, which is located in an ActiveX control, can be exploited through a vulnerable method. An attacker can exploit this by tricking an unsuspecting user into visiting a malicious webpage and execute arbitrary code within the context of the users' browser.

Affected Products

Samsung SmartViewer prior to 4.4.3

Impact

System Compromise: Remote attackers can execute arbitrary code within the context of the target user's browser

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.samsungsecurity.com/product/product_view.asp?idx=6275

CVE References

CVE-2014-9265