CVE-2017-10722

Name of the Vulnerable Software and Affected Versions Shekar Endoscope (affected versions not specified)

Description A stack overflow issue exists in the desktop application used to connect to the Shekar Endoscope device. This occurs when more than 26 characters are passed as the Wi-Fi password. An attacker can execute code on the user's system directly by providing the right payload. The application uses a dynamic link library (DLL) called "avilib.dll" to send binary packets to the device, allowing control over the device. The sendchangepass function in the DLL is used to change the Wi-Fi password on the device and calls a sub-function sub 75876EA0. This sub-function determines which action to execute based on the parameters sent to it. The sendchangepass function passes the password as the second argument and integer 2 as the first argument. The sub-function sub 75876EA0 uses the first argument to determine which block to jump to, and since the argument passed is 2, it jumps to a specific address and proceeds to calculate the length of the data string passed as the first parameter. This length and the first argument are then passed to another address, which calls a memmove function that uses a stack address as the destination, leading to a stack overflow.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.