TrackerCam HTTP User-Agent Field Remote Overflow

2005-02-18T13:57:12
ID OSVDB:13952
Type osvdb
Reporter Luigi Auriemma(aluigi@autistici.org)
Modified 2005-02-18T13:57:12

Description

Vulnerability Description

A remote overflow exists in TrackerCam. The server fails to properly check the input of an HTTP User-Agent request resulting in a buffer overflow. With a specially crafted request, an attacker can cause the execution of arbitrary code resulting in a loss of integrity.

Solution Description

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Short Description

A remote overflow exists in TrackerCam. The server fails to properly check the input of an HTTP User-Agent request resulting in a buffer overflow. With a specially crafted request, an attacker can cause the execution of arbitrary code resulting in a loss of integrity.

References:

Vendor URL: http://www.trackercam.com Security Tracker: 1013238 Secunia Advisory ID:14344 Related OSVDB ID: 13954 Related OSVDB ID: 13958 Related OSVDB ID: 13953 Related OSVDB ID: 13957 Related OSVDB ID: 13955 Related OSVDB ID: 13956 Other Advisory URL: http://aluigi.altervista.org/adv/tcambof-adv.txt Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2005-02/0388.html CVE-2005-0478