Vulnerability Details CVE-2015-1171
Stack-based buffer overflow in GSM SIM Utility (aka SIM Card Editor) 6.6 allows remote attackers to execute arbitrary code via a long entry in a .sms file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.769
EPSS Ranking 98.9%
CVSS Severity
CVSS v2 Score 10.0
References
- http://packetstormsecurity.com/files/129992/simeditor-overflow.txt
- https://osandamalith.wordpress.com/2015/01/16/sim-editor-stack-based-buffer-overflow/
- https://www.youtube.com/watch?v=tljbFpYtDTk
- http://packetstormsecurity.com/files/129992/simeditor-overflow.txt
- https://osandamalith.wordpress.com/2015/01/16/sim-editor-stack-based-buffer-overflow/
- https://www.youtube.com/watch?v=tljbFpYtDTk
Products affected by CVE-2015-1171
-
cpe:2.3:a:gsm:sim_card_editor:6.6