Stack-based Buffer Overflow in Cisco Linksys Video Camera
CVE-2008-4391

Currently unrated

Key Information:

Vendor: Cisco
Status: Wvc54gc
Vendor: CVE Published:; 9 December 2008

What is CVE-2008-4391?

The vulnerability resides in the SetSource method of the NetCamPlayerWeb11gv2 ActiveX control used in the Cisco Linksys WVC54GC wireless video camera. A malicious actor can exploit this buffer overflow by providing excessively long invalid arguments, potentially allowing them to execute arbitrary code on the device remotely. This flaw poses a significant security risk as it can lead to unauthorized access and control over the affected video camera.

References

http://www.kb.cert.org/vuls/id/639345

third-party-advisoryx_refsource_CERT-VN

http://www.securityfocus.com/bid/32665

vdb-entryx_refsource_BID

http://www.kb.cert.org/vuls/id/WDON-7M2U52

x_refsource_CONFIRM

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 9, 2008
Vulnerability Reserved
Oct 2, 2008