Lucene search
K

23 matches found

Prion
Prion
added 2018/09/19 6:29 p.m.11 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10000 can cause a buffer overflow resulting in overwriting arbitrary data...

5CVSS7.7AI score0.01317EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2018/09/19 6:29 p.m.3 views

CVE-2017-2873

An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can allow for a user to inject arbitrary shell characters during the SoftAP configuration resulting...

7.2CVSS5.9AI score0.0504EPSS
Exploits2References1
Prion
Prion
added 2018/09/19 4:29 p.m.19 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted UPnP discovery response can cause a buffer overflow resulting in overwriting arbitrary data. An attacker needs to be in...

2.9CVSS5.6AI score0.00818EPSS
Exploits3References1Affected Software1
OSV
OSV
added 2018/09/19 4:29 p.m.2 views

CVE-2017-2875

An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10000 can cause a buffer overflow resulting in overwriting arbitrary data...

9.1CVSS6.2AI score
Exploits0References1
Prion
Prion
added 2018/09/19 4:29 p.m.15 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an...

5CVSS7.7AI score0.02077EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2018/09/19 4:29 p.m.5 views

CVE-2017-2855

An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue...

8.1CVSS6AI score0.0166EPSS
Exploits2References1
OSV
OSV
added 2018/09/19 4:29 p.m.1 views

CVE-2017-2878

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an...

7.5CVSS6.2AI score0.02077EPSS
Exploits2References1
Prion
Prion
added 2018/09/19 4:29 p.m.16 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10000 can cause a buffer overflow resulting in overwriting arbitrary data...

6.4CVSS9.3AI score0.01428EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2018/09/19 4:29 p.m.4 views

CVE-2017-2879

An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted UPnP discovery response can cause a buffer overflow resulting in overwriting arbitrary data. An attacker needs to be in...

5.3CVSS6.2AI score0.00818EPSS
Exploits3References1
NVD
NVD
added 2018/09/19 4:29 p.m.26 views

CVE-2017-2879

An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted UPnP discovery response can cause a buffer overflow resulting in overwriting arbitrary data. An attacker needs to be in...

7.5CVSS6.2AI score0.00818EPSS
Exploits3References1
NVD
NVD
added 2018/09/19 4:29 p.m.20 views

CVE-2017-2878

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an...

8.8CVSS8AI score0.02077EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/09/19 4:0 p.m.29 views

CVE-2017-2875

An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10000 can cause a buffer overflow resulting in overwriting arbitrary data...

8.8CVSS9.5AI score0.01428EPSS
Exploits2References1
Cvelist
Cvelist
added 2018/09/19 4:0 p.m.19 views

CVE-2017-2878

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an...

8.8CVSS7.7AI score0.02077EPSS
Exploits2References1
CVE
CVE
added 2018/09/19 4:0 p.m.66 views

CVE-2017-2875

CVE-2017-2875 affects Foscam C1 Indoor HD Camera (firmware 2.52.2.43). The vulnerability resides in the devMng Multi-Camera port 10000 command 0x0002 handling, where lack of bounds checking on the username field can cause a buffer overflow, enabling remote code execution. The described exploit pa...

9.1CVSS9.4AI score0.01428EPSS
Exploits2References1Affected Software1
CVE
CVE
added 2018/09/19 4:0 p.m.61 views

CVE-2017-2878

CVE-2017-2878 affects the Foscam C1 Indoor HD Camera web management interface. The issue is a buffer overflow in the CGIProxy.fcgi logOut path: a user-supplied username (buffer size up to 0x40) is copied into a 0x20-byte field via strcpy, allowing an attacker—requiring at least a visitor-privileg...

8.8CVSS7.7AI score0.02077EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2018/09/17 8:29 p.m.7 views

CVE-2017-2856

An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue...

8.1CVSS6AI score0.0166EPSS
Exploits2References1
CVE
CVE
added 2018/09/17 8:0 p.m.65 views

CVE-2017-2854

Foscam C1 Indoor HD Camera (firmware 2.52.2.43) is affected by CVE-2017-2854 through its DDNS client. When configured to use the oray.com DDNS provider (ddnsServer=1) and with DDNS enabled, the update thread fetches the public IP via provider-specific code and processes server responses unsafely....

9.3CVSS8.1AI score0.0166EPSS
Exploits2References1Affected Software1
OSV
OSV
added 2018/09/17 6:29 p.m.3 views

CVE-2017-2874

An information disclosure vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10001 can allow for a user to retrieve sensitive information without authentication...

7.5CVSS5.8AI score0.01778EPSS
Exploits2References1
OSV
OSV
added 2018/04/17 8:29 p.m.3 views

CVE-2017-2871

Insufficient security checks exist in the recovery procedure used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. An attacker who is in the same subnetwork of the camera or has remote administrator access can fully compromise the device by performing a firmware recovery...

8.8CVSS5.8AI score
Exploits0References1
seebug.org
seebug.org
added 2017/11/14 12:0 a.m.48 views

Foscam IP Video Camera devMng Multi-Camera Port 10001 Command 0x0064 Empty AuthResetKey Vulnerability(CVE-2017-2877)

Summary A missing error check exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10001 could allow an attacker to reset the user accounts to factory defaults, without authentication. Tested Versio...

9.6AI score0.01902EPSS
Exploits2
Rows per page
Query Builder