Vulnerability Description
Multiple buffer overflows in Toshiba Surveillance (Surveillix) RecordSend ActiveX control (MeIpCamX.DLL 1.0.0.4) allow remote attackers to execute arbitrary code via long arguments to the (1) SetPort and (2) SetIpAddress methods.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Toshiba | Surveillix | 1.0.0.4 |
Related Weaknesses (CWE)
References
- http://retrogod.altervista.org/rgod_toshiba_control.htmlExploit
- http://secunia.com/advisories/28557Vendor Advisory
- http://www.securityfocus.com/bid/27360Exploit
- http://www.vupen.com/english/advisories/2008/0214
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39792
- https://www.exploit-db.com/exploits/4946
- http://retrogod.altervista.org/rgod_toshiba_control.htmlExploit
- http://secunia.com/advisories/28557Vendor Advisory
- http://www.securityfocus.com/bid/27360Exploit
- http://www.vupen.com/english/advisories/2008/0214
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39792
- https://www.exploit-db.com/exploits/4946
FAQ
What is CVE-2008-0399?
CVE-2008-0399 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Multiple buffer overflows in Toshiba Surveillance (Surveillix) RecordSend ActiveX control (MeIpCamX.DLL 1.0.0.4) allow remote attackers to execute arbitrary code via long arguments to the (1) SetPort ...
How severe is CVE-2008-0399?
CVE-2008-0399 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-0399?
Check the references section above for vendor advisories and patch information. Affected products include: Toshiba Surveillix.