Badnack

**Name of the Vulnerable Software and Affected Versions** Insteon HD IP Camera White 2864-222 (affected versions not specified) **Description** The issue is related to a stack-based Buffer Overflow that leads to Control-Flow Hijacking. This can be achieved via a crafted `usr` key, as demonstrated by a long `remoteIp` parameter to "cgi-bin/CGIProxy.fcgi" on port 34100. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Insteon HD IP Camera White 2864-222 (affected versions not specified) **Description** The issue concerns a Buffer Overflow in the webService binary of the affected device. This occurs via a crafted `pid`, `pwd`, or `usr` key in a GET request on port 34100. There is no information provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.