CVE-2014-8756

2014-10-1715:00:00

mitre

www.cve.org

AI Score

7.6

Confidence

High

EPSS

0.052

Percentile

93.1%

JSON

The NcrCtl4.NcrNet.1 control in Panasonic Network Camera Recorder before 4.04R03 allows remote attackers to execute arbitrary code via a crafted GetVOLHeader method call, which writes null bytes to an arbitrary address.

References

panasonic.net/pcc/cgi-bin/products/netwkcam/download_us/tbookmarka_m.cgi?m=%20&mm=2010073014092324

www.zerodayinitiative.com/advisories/ZDI-14-363/