CVE-2015-8039 Information

Description

Samsung SmartViewer allows remote attackers to execute arbitrary code via unspecified vectors to the (1) DVRSetupSave method in the STWAxConfig control or (2) SendCustomPacket method in the STWAxConfigNVR control which trigger an untrusted pointer dereference.

Reference

http://www.securityfocus.com/bid/77079 http://www.zerodayinitiative.com/advisories/ZDI-15-462 http://www.zerodayinitiative.com/advisories/ZDI-15-463