CVE-2017-10723

Name of the Vulnerable Software and Affected Versions Shekar Endoscope (affected versions not specified)

Description A memory corruption issue was discovered in the Shekar Endoscope, allowing an attacker connected to the device's Wi-Fi SSID to execute remote code on the device. This device is used in various industrial systems, car garages, and medical clinics to access areas difficult for humans to reach. A breach of this system can allow an attacker to access the video feed and pictures viewed by the user and potentially gain a foothold in air-gapped networks, especially in nation-critical infrastructure and industries. The firmware contains a binary uvc stream, a UDP daemon responsible for handling UDP requests. The client application sends a UDP request to change the Wi-Fi name, which is handled by the control Dev thread function. This function calls setwifiname, which uses a memcpy function with the length of the payload obtained by strlen as the third parameter, allowing an attacker to overflow the function and control the $PC value.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.