Unrated severityNVD Advisory· Published Jan 22, 2015· Updated Jun 17, 2026
CVE-2015-0925
CVE-2015-0925
Description
The client in iPass Open Mobile before 2.4.5 on Windows allows remote authenticated users to execute arbitrary code via a DLL pathname in a crafted Unicode string that is improperly handled by a subprocess reached through a named pipe, as demonstrated by a UNC share pathname.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:ipass:ipass_open_mobile:*:*:*:*:*:windows:*:*+ 1 more
- cpe:2.3:a:ipass:ipass_open_mobile:*:*:*:*:*:windows:*:*range: <=2.4.4
- (no CPE)range: <2.4.5
Patches
Vulnerability mechanics
References
1- www.kb.cert.org/vuls/id/110652nvdThird Party AdvisoryUS Government Resource
News mentions
0No linked articles in our index yet.