CVE-2017-8412
CVE-2017-8412 affects D-Link DCS-1100 and DCS-1130 devices. A custom mp4ts binary in /var/www/video dumps the HTTP VERB into logs and copies user input via a vulnerable sprintf into a string without bounds checking, leading to a stack overflow that can overwrite the PC and enable buffer overflow ...