Lucene search
K

20 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-12018

Malware in sbrugna...

9.8CVSS9.5AI score0.01902EPSS
Exploits2References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-12016

Malware in sbrugna...

9.1CVSS8.8AI score0.01428EPSS
Exploits2References2
CVE
CVE
added 2018/09/19 6:0 p.m.63 views

CVE-2017-2876

CVE-2017-2876 affects the Foscam C1 Indoor HD Camera (System 1.9.3.18; Application 2.52.2.43). The issue is a buffer overflow in the Multi-Camera port 10000 (devMng) during authentication, where the username/password fields can overflow a small stack/IPC buffer, enabling a remote attacker to exec...

8.8CVSS7.8AI score0.01317EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2018/09/19 6:0 p.m.74 views

CVE-2017-2877

CVE-2017-2877 : Foscam C1 Indoor HD Camera (firmware 2.52.2.43) is vulnerable via the Multi-Camera interface on UDP/10001. The vulnerability stems from a missing error check in the devMng path for command 0x0064, allowing an unauthenticated attacker to reset all user accounts to factory defaults ...

9.8CVSS9.2AI score0.01902EPSS
Exploits2References1Affected Software1
Prion
Prion
added 2018/09/19 4:29 p.m.15 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an...

5CVSS7.7AI score0.02077EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2018/09/19 4:29 p.m.20 views

CVE-2017-2878

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an...

8.8CVSS8AI score0.02077EPSS
Exploits2References1
CVE
CVE
added 2018/09/19 4:0 p.m.61 views

CVE-2017-2878

CVE-2017-2878 affects the Foscam C1 Indoor HD Camera web management interface. The issue is a buffer overflow in the CGIProxy.fcgi logOut path: a user-supplied username (buffer size up to 0x40) is copied into a 0x20-byte field via strcpy, allowing an attacker—requiring at least a visitor-privileg...

8.8CVSS7.7AI score0.02077EPSS
Exploits2References1Affected Software1
NVD
NVD
added 2018/09/17 8:29 p.m.32 views

CVE-2017-2857

An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue...

9.3CVSS8.2AI score0.0166EPSS
Exploits2References1
CVE
CVE
added 2018/09/17 6:0 p.m.63 views

CVE-2017-2874

CVE-2017-2874 affects the Foscam C1 Indoor HD Camera via the devMng Multi-Camera interface over UDP ports 10000/10001. The information-disclosure vulnerability can be triggered by an unauthenticated remote attacker using the find command (0x0000) to retrieve sensitive device data, including MAC a...

7.5CVSS7.1AI score0.01778EPSS
Exploits2References1Affected Software1
Talos Blog
Talos Blog
added 2018/04/17 7:59 a.m.186 views

Vulnerability Spotlight: Foscam IP Video Camera Firmware Recovery Unsigned Image Vulnerability

This vulnerability was discovered by Claudio Bozzato of Cisco Talos. Executive Summary The Foscam C1 Indoor HD Camera is a network-based camera that is marketed for a variety of uses, including as a home security monitoring device. Talos recently identified 32 vulnerabilities present in these...

5.8CVSS0.4AI score0.01106EPSS
Exploits2
Talos
Talos
added 2017/11/13 12:0 a.m.70 views

Foscam IP Video Camera webService oray.com DDNS Client Code Execution Vulnerability

Summary An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating...

9.3CVSS8.3AI score0.0166EPSS
Exploits2
seebug.org
seebug.org
added 2017/09/15 12:0 a.m.51 views

Foscam IP Video Camera CGIProxy.fcgi SMTP Test Sender Parameter Configuration Command Injection Vulnerability(CVE-2017-2844)

Summary An exploitable command injection vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can allow for a user to inject arbitrary data in the "msmtprc" configuration file resulting...

6.5CVSS9.6AI score0.03439EPSS
Exploits1
Cvelist
Cvelist
added 2017/06/29 5:0 p.m.26 views

CVE-2017-2850

In the web management interface in Foscam C1 Indoor HD cameras with application firmware 2.52.2.37, a specially crafted HTTP request can allow for a user to inject arbitrary characters in the pureftpd.passwd file during a username change, which in turn allows for bypassing chroot restrictions in...

8.8CVSS8.6AI score0.02194EPSS
Exploits1References2
Prion
Prion
added 2017/06/27 3:29 p.m.18 views

Design/Logic Flaw

In the web management interface in Foscam C1 Indoor HD Camera running application firmware 2.52.2.37, a specially crafted HTTP request can allow for a user to inject arbitrary data in the "msmtprc" configuration file resulting in command execution. An attacker can simply send an HTTP request to t...

6.5CVSS8.8AI score0.03439EPSS
Exploits1References2Affected Software1
Prion
Prion
added 2017/06/21 1:29 p.m.12 views

Buffer overflow

An exploitable buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can cause a buffer overflow resulting in overwriting arbitrary data. An attacker can simply send an...

5CVSS7.7AI score0.02786EPSS
Exploits2References2Affected Software1
Prion
Prion
added 2017/06/21 1:29 p.m.16 views

Directory traversal

An exploitable directory traversal vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can cause the application to read a file from disk but a failure to adequately filter characters...

4CVSS6.3AI score0.02866EPSS
Exploits2References2Affected Software1
NVD
NVD
added 2017/06/21 1:29 p.m.15 views

CVE-2017-2829

An exploitable directory traversal vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.37. A specially crafted HTTP request can cause the application to read a file from disk but a failure to adequately filter characters...

7.7CVSS6.5AI score0.02866EPSS
Exploits2References2
Cvelist
Cvelist
added 2017/06/21 1:0 p.m.30 views

CVE-2017-2805

An exploitable stack-based buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera. A specially crafted http request can cause a stack-based buffer overflow resulting in overwriting arbitrary data on the stack frame. An attacker can simply send ...

9.8CVSS9.6AI score0.26248EPSS
Exploits2References2
CVE
CVE
added 2017/06/21 1:0 p.m.66 views

CVE-2017-2805

The CVE-2017-2805 issue affects Foscam C1 Indoor HD Camera via the webService CGIProxy.fcgi. A stack-based buffer overflow is triggered by processing HTTP requests that carry parameters (usr, pwd, cmd). Each parameter buffer is 0x40 bytes; overflowing usr/pwd/cmd can overwrite adjacent stack data...

9.8CVSS9.5AI score0.26248EPSS
Exploits2References2Affected Software1
CVE
CVE
added 2017/06/21 1:0 p.m.57 views

CVE-2017-2830

Foscam C1 Indoor HD Camera is affected by a stack-based buffer overflow in the CGIProxy.fcgi web service. The flaw occurs while parsing multipart/form-data during a POST (usrBeatHeart/0x3001 flow); a boundary string larger than 0x100 bytes overflows a stack buffer, enabling potential code executi...

8.1CVSS7.7AI score0.02786EPSS
Exploits2References2Affected Software1
Rows per page
Query Builder