CVE-2021-21940

A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo functionality of Anker Eufy Homebase 2 2.1.6.9h. A specially-crafted network packet can lead to a heap buffer overflow. An attacker can send a malicious packet to trigger this vulnerability...

CVE-2021-21940

creationtimestamp| type| source ---|---|--- 2021-10-12 18:25:46+00:00| seen| https://t.me/cibsecurity/30420...

CVE-2021-21940

Summary (CVE-2021-21940) : The TALOS advisory documents a heap-based buffer overflow in the Anker Eufy Homebase 2 pushMuxer when processing RTSP info. A crafted RTSP packet (without a proper CRLFCRLF termination) can cause the server to overflow the 0x800-byte receive buffer across adjacent RtspS...

Anker Eufy Homebase 2 pushMuxer processRtspInfo heap buffer overflow vulnerability

Talos Vulnerability Report TALOS-2021-1369 Anker Eufy Homebase 2 pushMuxer processRtspInfo heap buffer overflow vulnerability October 11, 2021 CVE Number CVE-2021-21940 SUMMARY A heap-based buffer overflow vulnerability exists in the pushMuxer processRtspInfo functionality of Anker Eufy Homebase ...