PT-2018-7208 · Foscam · Foscam C1 Indoor Hd Camera

Publicado

2018-09-17

Atualizado

2022-06-07

CVE-2017-2856

CVSS v2.0

9.3

Alta

Vetor

AV:N/AC:M/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions: Foscam C1 Indoor HD Camera version 2.52.2.43

Description: A buffer overflow issue exists in the DDNS client of the affected device. When DDNS is enabled, an attacker intercepting HTTP connections can fully compromise the device by setting up a rogue HTTP server.

Recommendations: For Foscam C1 Indoor HD Camera version 2.52.2.43, consider disabling DDNS until a patch is available to prevent exploitation. Restrict access to the device when possible to minimize the risk of HTTP connection interception.

Exploit

Correção

Buffer Overflow

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-120

Identificadores relacionados

CVE-2017-2856

Produtos afetados

Foscam C1 Indoor Hd Camera

PT-2018-7208 · Foscam · Foscam C1 Indoor Hd Camera

CVE-2017-2856

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 4