Описание
An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue HTTP server.
Ссылки
- ExploitThird Party Advisory
- ExploitThird Party Advisory
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:foscam:c1_firmware:2.52.2.43:*:*:*:*:*:*:*
cpe:2.3:h:foscam:c1:-:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.00422
Низкий
8.1 High
CVSS3
8.1 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-120
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
An exploitable buffer overflow vulnerability exists in the DDNS client used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. On devices with DDNS enabled, an attacker who is able to intercept HTTP connections will be able to fully compromise the device by creating a rogue HTTP server.
EPSS
Процентиль: 62%
0.00422
Низкий
8.1 High
CVSS3
8.1 High
CVSS3
9.3 Critical
CVSS2
Дефекты
CWE-120