CVE-2017-2879

Summary

An exploitable buffer overflow vulnerability exists in the UPnP implementation used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted UPnP discovery response can cause a buffer overflow resulting in overwriting arbitrary data. An attacker needs to be in the same subnetwork and reply to a discovery message to trigger this vulnerability.

Affected Software

VendorProductVersion RangeStatus
FoscamFoscam C1 Indoor HD CameraFoscam Indoor IP Camera C1 Series,System Firmware Version: 1.9.3.18,Application Firmware Version: 2.52.2.43,Plug-In Version: 3.3.0.26affected

Weaknesses

  • Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

References