Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2008-6898

Published: 05/08/2009 Updated: 29/09/2017
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 945
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Saschart

Vulnerability Summary

Buffer overflow in the XHTTP Module 4.1.0.0 in the ActiveX control for SaschArt SasCam Webcam Server 2.6.5 allows remote malicious users to cause a denial of service (crash) or execute arbitrary code via a long argument to the Get method and other unspecified methods.

Vulnerable Product Search on Vulmon Subscribe to Product

saschart sascam webcam server 2.6.5

Exploits

Exploit DB: SasCam Webcam Server 2.6.5 - 'Get()' Method Buffer Overflow (Metasploit)
## # $Id: sascam_getrb 10477 2010-09-25 11:59:02Z mc $ ## ## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # Framework web site for more information on licensing and terms of use # metasploitcom/framework/ ## require 'msf/core' class Metaspl ...
Exploit DB: SasCam WebCam Server 2.6.5 - ActiveX Remote Buffer Overflow
<!--********************************************************************************** --> <!--SasCam WebCam Server Version 265 Belus Technology Inc XHTTP Module v4100 --> <!--Remote Exploit --> <!--Tested in Windows XP SP2/SP3 IE 70 --> <!--C0d3d by callAX bemariani@gmailcom ...
Exploit DB: SasCam WebCam Server 2.6.5 - ActiveX Overwrite (SEH)
<html> <object classid='clsid:0297D24A-F425-47EE-9F3B-A459BCE593E3' id='target'></object> <script language = 'vbscript'> 'SEH Overwrite exploited by Blake 'Original EIP method by callAX 'Tested on XP SP3/IE7 in virtualbox '$ nc 1921681155 4444 'Microsoft Windows XP [Version 512600] '(C) Copyright 1985-2001 Microsoft Co ...

References

CWE-119http://www.securityfocus.com/bid/33053http://www.exploit-db.com/exploits/14195https://exchange.xforce.ibmcloud.com/vulnerabilities/47654https://www.exploit-db.com/exploits/7617https://nvd.nist.govhttps://www.exploit-db.com/exploits/16641/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895blind SQL injectionCVE-2024-5064CVE-2023-52677CVE-2023-52682CVE-2024-30051CVE-2024-35849remote attackersremote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook