Published: 19/07/2012 Updated: 29/08/2017

CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6

VMScore: 940

Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C

Subscribe to Linksys Playerpt Activex Control

Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote malicious users to execute arbitrary code via a long URL in the first argument (aka the sURL argument).

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco linksys_playerpt_activex_control 1.0.0.15

<!-- Cisco Linksys WVC200 Wireless-G PTZ Internet Video Camera PlayerPT ActiveX Control PlayerPTocx sprintf Buffer Overflow Vulnerability when viewing the device web interface it asks to install an ActiveX control with the following settings: ProductName: PlayerPT ActiveX Control Module File version: 10015 Binary path: C:\WINDOWS\system32 ...

## # This file is part of the Metasploit Framework and may be subject to # redistribution and commercial restrictions Please see the Metasploit # web site for more information on licensing and terms of use # metasploitcom/ ## require 'msf/core' class Metasploit3 < Msf::Exploit::Remote Rank = NormalRanking include Msf::Exploit::R ...

CWE-119 http://secunia.com/secunia_research/2012-25/http://archives.neohapsis.com/archives/bugtraq/2012-07/0113.html http://www.securityfocus.com/bid/54588 http://www.securitytracker.com/id?1027259 https://exchange.xforce.ibmcloud.com/vulnerabilities/77085 https://nvd.nist.gov https://www.exploit-db.com/exploits/18641/

CVE-2012-0284

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect