CVE-2019-6001

Vulnerability Summary

Buffer overflow in PTP (Picture Transfer Protocol) of EOS series digital cameras (EOS-1D X firmware version 2.1.0 and previous versions, EOS-1D X MKII firmware version 1.1.6 and previous versions, EOS-1D C firmware version 1.4.1 and previous versions, EOS 5D MARK III firmware version 1.3.5 and previous versions, EOS 5D MARK IV firmware version 1.2.0 and previous versions, EOS 5DS firmware version 1.1.2 and previous versions, EOS 5DS R firmware version 1.1.2 and previous versions, EOS 6D firmware version 1.1.8 and previous versions, EOS 6D MARK II firmware version 1.0.4 and previous versions, EOS 7D MARK II firmware version 1.1.2 and previous versions, EOS 70 D firmware version 1.1.2 and previous versions, EOS 80 D firmware version 1.0.2 and previous versions, EOS KISS X7I / EOS D REBEL T5I / EOS 700D firmware version 1.1.5 and previous versions, EOS KISS X8I / EOS D REBEL T6I / EOS 750D firmware version 1.0.0 and previous versions, EOS KISS X9I / EOS D REBEL T7I / EOS 800D firmware version 1.0.1 and previous versions, EOS KISS X7 / EOS D REBEL SL1 / EOS 100D firmware version 1.0.1 and previous versions, EOS KISS X9 / EOS D REBEL SL2 / EOS 200D firmware version 1.0.1 and previous versions, EOS KISS X10 / EOS D REBEL SL3 / EOS 200D / EOS 250D firmware version 1.0.1 and previous versions, EOS 8000D / EOS D REBEL T6S / EOS 760D firmware version 1.0.0 and previous versions, EOS 9000D / EOS 77D firmware version 1.0.2 and previous versions, EOS KISS X70 / EOS D REBEL T5 / EOS 1200D firmware version 1.0.2 and previous versions, EOS D REBEL T5 RE / EOS 1200D MG / EOS HI firmware version 1.0.2 and previous versions, EOS KISS X80 / EOS D REBEL T6 / EOS 1300D firmware version 1.1.0 and previous versions, EOS KISS X90 / EOS D REBEL T7 / EOS 1500D / EOS 2000D firmware version 1.0.0 and previous versions, EOS D REBEL T100 / EOS 3000D / EOS 4000D firmware version 1.0.0 and previous versions, EOS R firmware version 1.3.0 and previous versions, EOS RP firmware version 1.2.0 and previous versions, EOS RP GOLD firmware version 1.2.0 and previous versions, EOS M2 firmware version 1.0.3 and previous versions, EOS M3 firmware version 1.2.0 and previous versions, EOS M5 firmware version 1.0.1 and previous versions, EOS M6 firmware version 1.0.1 and previous versions, EOS M6(China) firmware version 5.0.0 and previous versions, EOS M10 firmware version 1.1.0 and previous versions, EOS M100 firmware version 1.0.0 and previous versions, EOS KISS M / EOS M50 firmware version 1.0.2 and previous versions) and PowerShot SX740 HS firmware version 1.0.1 and previous versions, PowerShot SX70 HS firmware version 1.1.0 and previous versions, and PowerShot G5Xmark II firmware version 1.0.1 and previous versions allows an attacker on the same network segment to trigger the affected product being unresponsive or to execute arbitrary code on the affected product via setadapterbatteryreport command.

Vulnerability Trend

References