A specially crafted TCP/IP packet may cause a camera recovery image telnet interface to crash. It may also cause a buffer overflow which could enable remote code execution. The recovery image can only be booted with administrative rights or with physical access to the camera and allows the upload of a new firmware in case of a damaged firmware.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
bosch autodome ip 4000i firmware cpp7.3 |
||
bosch autodome ip 5000i firmware cpp7.3 |
||
bosch autodome ip starlight 5000i firmware cpp7.3 |
||
bosch autodome ip starlight 7000i firmware cpp7.3 |
||
bosch dinion ip 3000i firmware cpp7.3 |
||
bosch dinion ip bullet 4000i firmware cpp7.3 |
||
bosch dinion ip bullet 5000 firmware cpp7.3 |
||
bosch dinion ip bullet 5000i firmware cpp7.3 |
||
bosch dinion ip bullet 6000i firmware cpp7.3 |
||
bosch flexidome ip 3000i firmware cpp7.3 |
||
bosch flexidome ip 4000i firmware cpp7.3 |
||
bosch flexidome ip 5000i firmware cpp7.3 |
||
bosch flexidome ip starlight 5000i firmware cpp7.3 |
||
bosch flexidome ip starlight 8000i firmware cpp7.3 |
||
bosch mic ip starlight 7000i firmware cpp7.3 |
||
bosch mic ip starlight 7100i firmware cpp7.3 |
||
bosch mic ip ultra 7100i firmware cpp7.3 |
||
bosch mic ip fusion 9000i firmware cpp7.3 |
||
bosch dinion ip starlight 6000 firmware cpp7 |
||
bosch dinion ip starlight 7000 firmware cpp7 |
||
bosch dinion ip thermal 8000 firmware cpp7 |
||
bosch flexidome ip starlight 6000 firmware cpp7 |
||
bosch flexidome ip starlight 7000 firmware cpp7 |
||
bosch dinion ip thermal 9000 rm firmware cpp7 |
||
bosch aviotec ip starlight 8000 firmware cpp6 |
||
bosch dinion ip starlight 8000 firmware cpp6 |
||
bosch dinion ip ultra 8000 firmware cpp6 |
||
bosch flexidome ip panoramic 6000 firmware cpp6 |
||
bosch flexidome ip panoramic 7000 firmware cpp6 |
||
bosch autodome ip 4000 hd firmware cpp4 |
||
bosch autodome ip 5000 hd firmware cpp4 |
||
bosch autodome ip 5000 ir firmware cpp4 |
||
bosch autodome 7000 firmware cpp4 |
||
bosch dinion hd 1080p firmware cpp4 |
||
bosch dinion hd 1080p hdr firmware cpp4 |
||
bosch dinion hd 720p firmware cpp4 |
||
bosch dinion imager 9000 hd firmware cpp4 |
||
bosch dinion ip bullet 4000 firmware cpp4 |
||
bosch dinion ip bullet 5000 firmware cpp4 |
||
bosch dinion ip 4000 hd firmware cpp4 |
||
bosch dinion ip 5000 hd firmware cpp4 |
||
bosch dinion ip 5000 mp firmware cpp4 |
||
bosch dinion ip starlight 7000 hd firmware cpp4 |
||
bosch flexidome corner 9000 mp firmware cpp4 |
||
bosch flexidome hd 1080p firmware cpp4 |
||
bosch flexidome hd 1080p hdr firmware cpp4 |
||
bosch flexidome hd 720p firmware cpp4 |
||
bosch vandal-proof flexidome hd 1080p firmware cpp4 |
||
bosch vandal-proof flexidome hd 1080p hdr firmware cpp4 |
||
bosch vandal-proof flexidome hd 720p firmware cpp4 |
||
bosch flexidome ip micro 2000 hd firmware cpp4 |
||
bosch flexidome ip micro 2000 ip firmware cpp4 |
||
bosch flexidome ip indoor 4000 hd firmware cpp4 |
||
bosch flexidome ip indoor 4000 ir firmware cpp4 |
||
bosch flexidome ip outdoor 4000 hd firmware cpp4 |
||
bosch flexidome ip outdoor 4000 ir firmware cpp4 |
||
bosch flexidome ip indoor 5000 hd firmware cpp4 |
||
bosch flexidome ip indoor 5000 mp firmware cpp4 |
||
bosch flexidome ip micro 5000 mp firmware cpp4 |
||
bosch flexidome ip outdoor 5000 hd firmware cpp4 |
||
bosch flexidome ip outdoor 5000 mp firmware cpp4 |
||
bosch flexidome ip panoramic 5000 firmware cpp4 |
||
bosch ip bullet 4000 hd firmware cpp4 |
||
bosch ip bullet 5000 hd firmware cpp4 |
||
bosch ip micro 2000 firmware cpp4 |
||
bosch ip micro 2000 hd firmware cpp4 |
||
bosch mic ip dynamic 7000 firmware cpp4 |
||
bosch mic ip starlight 7000 firmware cpp4 |
||
bosch tinyon ip 2000 firmware cpp4 |
Vulmon