2 matches found
CVE-2017-3223
CVE-2017-3223 affects Dahua IP cameras via the Sonia web interface (/usr/bin/sonia). Older firmware (pre V2.400.0000.14.R.20170713) does not validate input length for the password field, enabling a remote, unauthenticated attacker to send crafted POST requests that may trigger out-of-bounds memor...
Dahua IP cameras Sonia web interface is vulnerable to stack buffer overflow
Overview Dahua IP camera products using firmware versions prior to V2.400.0000.14.R.20170713 include a version of the Sonia web interface that may be vulnerable to a stack buffer overflow. Description CWE-121: Stack-based Buffer Overflow - CVE-2017-3223Dahua IP camera products include an...