CVE-2015-3435

Name of the Vulnerable Software and Affected Versions Samsung Security Manager versions prior to 1.31

Description The issue allows remote attackers to execute arbitrary code by uploading a specially crafted file using HTTP requests, specifically with PUT or MOVE methods. This can be exploited by uploading a file with an HTTP PUT or MOVE request, potentially leading to remote code execution.

Recommendations For versions prior to 1.31, update to version 1.31 or later to resolve the issue. As a temporary workaround, consider restricting access to the ActiveMQ Broker Service to minimize the risk of exploitation. Avoid using the PUT and MOVE methods in the affected HTTP endpoint until the issue is resolved.