← back
CVE-2014-10011

CVE-2014-10011

EPSS 10.1%
Stack-based buffer overflow in UltraCamLib in the UltraCam ActiveX Control (UltraCamX.ocx) for the TRENDnet SecurView camera TV-IP422WN allows remote attackers to execute arbitrary code via a long string to the (1) CGI_ParamSet, (2) OpenFileDlg, (3) SnapFileName, (4) Password, (5) SetCGIAPNAME, (6) AccountCode, or (7) RemoteHost function.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/129262/TRENDnet-SecurView-Wireless-Network-Camera-TV-IP422WN-Buffer-Overflow.htmlunverifiedexploitdbwww.exploit-db.com/exploits/35363unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://packetstormsecurity.com/files/129262/TRENDnet-SecurView-Wireless-Network-Camera-TV-IP422WN-Buffer-Overflow.htmlhttps://exchange.xforce.ibmcloud.com/vulnerabilities/98948http://www.securityfocus.com/bid/71292http://www.zeroscience.mk/codes/trendnet_bof.txthttp://www.zeroscience.mk/en/vulnerabilities/ZSL-2014-5211.php