CVE-2017-11563

Name of the Vulnerable Software and Affected Versions D-Link EyeOn Baby Monitor (DCS-825L) version 1.08.1

Description The issue allows a remote attacker to execute arbitrary code with root privilege on the device by sending a crafted UDP request to the "Discover" service, which can lead to a stack overflow. This service provides functions such as changing passwords and retrieving basic information.

Recommendations For D-Link EyeOn Baby Monitor (DCS-825L) version 1.08.1, consider disabling the UDP "Discover" service until a patch is available to prevent potential exploitation. Restrict access to the device to minimize the risk of remote code execution. At the moment, there is no information about a newer version that contains a fix for this vulnerability.