3 matches found
CVE-2018-3876
An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the destination buffer, which has a size of 64 bytes. An attacker can send an arbitrarily long "bucket"...
CVE-2018-3876
The CVE-2018-3876 issue affects Samsung SmartThings Hub STH-ETH-250, Firmware 0.20.17, via the video-core HTTP server in the credentials handler. The vulnerability arises from a buffer overflow caused by copying a user-controlled JSON parameter (bucket) using strncpy with a destination buffer of ...
CVE-2018-3876
An exploitable buffer overflow vulnerability exists in the credentials handler of video-core's HTTP server of Samsung SmartThings Hub STH-ETH-250-Firmware version 0.20.17. The strncpy overflows the destination buffer, which has a size of 64 bytes. An attacker can send an arbitrarily long "bucket"...