PT-2018-16259 · Samsung · Samsung Smartthings Hub
Published
2018-09-20
·
Updated
2023-04-26
·
CVE-2018-3865
CVSS v3.1
9.9
Critical
| Vector | AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Samsung SmartThings Hub STH-ETH-250 - Firmware version 0.20.17
Description
A buffer overflow issue exists in the Samsung WifiScan handler of the video-core's HTTP server. The
strcpy function overflows a destination buffer of 40 bytes. An attacker can exploit this by sending a long cameraIp value.Recommendations
For Firmware version 0.20.17, as a temporary workaround, consider restricting access to the WifiScan handler until a patch is available. Avoid using arbitrarily long
cameraIp values in the affected HTTP server endpoint.Exploit
Fix
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Samsung Smartthings Hub