CVE-2010-4230

Name of the Vulnerable Software and Affected Versions Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008

Description The issue is related to a stack-based buffer overflow in a certain ActiveX control. This allows remote attackers to execute arbitrary code via a long string in the first argument to the connect method.

Recommendations For Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008, consider disabling the connect method until a patch is available. Restrict access to the affected ActiveX control to minimize the risk of exploitation.