VYPR
Unrated severityNVD Advisory· Published Jan 22, 2015· Updated Jun 17, 2026

CVE-2015-0925

CVE-2015-0925

Description

The client in iPass Open Mobile before 2.4.5 on Windows allows remote authenticated users to execute arbitrary code via a DLL pathname in a crafted Unicode string that is improperly handled by a subprocess reached through a named pipe, as demonstrated by a UNC share pathname.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:ipass:ipass_open_mobile:*:*:*:*:*:windows:*:*+ 1 more
    • cpe:2.3:a:ipass:ipass_open_mobile:*:*:*:*:*:windows:*:*range: <=2.4.4
    • (no CPE)range: <2.4.5

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.