9.3
CVSSv2

CVE-2007-2239

Published: 07/05/2007 Updated: 29/07/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 935
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Summary

Stack-based buffer overflow in the SaveBMP method in the AXIS Camera Control (aka CamImage) ActiveX control prior to 2.40.0.0 in AxisCamControl.ocx in AXIS 2100, 2110, 2120, 2130 PTZ, 2420, 2420-IR, 2400, 2400+, 2401, 2401+, 2411, and Panorama PTZ allows remote malicious users to cause a denial of service (Internet Explorer crash) or execute arbitrary code via a long argument.

Most Upvoted Vulmon Research Post

There is no Researcher post for this vulnerability
Would you like to share something about it? Sign up now to share your knowledge with the community.
Vulnerable Product Search on Vulmon Subscribe to Product

axis 2120 network camera

axis 2130 ptz network camera

axis 2100 network camera

axis 2110 network camera

axis panorama ptz camera

axis 2411 video server

axis 2420-ir network camera

axis 2420 network camera

axis 2400 video server

axis 2401 video server

Exploits

<pre> <code><span style="font: 10pt Courier New;"><span class="general1-symbol">----------------------------------------------------------------------------------------------- <b>[PoC] AXIS Camera Control (AxisCamControlocx v 10215) "SaveBMP()" Method Buffer Overflow</b> original advisory: secuniac ...