Vulnerability Description
An exploitable stack-based buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera. A specially crafted http request can cause a stack-based buffer overflow resulting in overwriting arbitrary data on the stack frame. An attacker can simply send an http request to the device to trigger this vulnerability.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Foscam | C1 Hd Indoor Camera Firmware | <= 1.9.3.17 |
| Foscam | C1 Hd Indoor Camera | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/99190Broken LinkThird Party AdvisoryVDB Entry
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0299ExploitThird Party Advisory
- http://www.securityfocus.com/bid/99190Broken LinkThird Party AdvisoryVDB Entry
- https://www.talosintelligence.com/vulnerability_reports/TALOS-2017-0299ExploitThird Party Advisory
FAQ
What is CVE-2017-2805?
CVE-2017-2805 is a vulnerability with a CVSS score of 9.8 (CRITICAL). An exploitable stack-based buffer overflow vulnerability exists in the web management interface used by the Foscam C1 Indoor HD Camera. A specially crafted http request can cause a stack-based buffer ...
How severe is CVE-2017-2805?
CVE-2017-2805 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2017-2805?
Check the references section above for vendor advisories and patch information. Affected products include: Foscam C1 Hd Indoor Camera Firmware, Foscam C1 Hd Indoor Camera.