CVE-2013-4980

2014-03-0316:55:04

CWE-119

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:P/I:P/A:C

AI Score

7.8

Confidence

High

EPSS

0.056

Percentile

93.3%

JSON

Buffer overflow in the RTSP Packet Handler in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the URI in an RTSP SETUP request.

Affected configurations

Nvd

Node

avtechavn801_dvr_firmwareRange≤1017-1003-1009-1003

AND

avtechavn801_dvrMatch-

VendorProductVersionCPE
avtechavn801_dvr_firmware*cpe:2.3:o:avtech:avn801_dvr_firmware:*:*:*:*:*:*:*:*
avtechavn801_dvr-cpe:2.3:h:avtech:avn801_dvr:-:*:*:*:*:*:*:*