An issue exists on EDIMAX IC-3140W up to and including 3.06, IC-5150W up to and including 3.09, and IC-6220DC up to and including 3.06 devices. The ipcam_cgi binary contains a stack-based buffer overflow that is possible to trigger from a remote unauthenticated /camera-cgi/public/getsysyeminfo.cgi?action=VALUE_HERE HTTP request: if the VALUE_HERE length is more than 0x400 (1024), it is possible to overwrite other values located on the stack due to an incorrect use of the strcpy() function.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
edimax ic-3140w_firmware |
||
edimax ic-5150w_firmware |
||
edimax ic-6220dc_firmware |