Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0284

Overview

Vulnerability Score 9.3 9.3
CVE Id CVE-2012-0284
Last Modified 10 Oct 2014 12:47:49
Published 19 Jul 2012 11:55:02
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0284

Summary

Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote attackers to execute arbitrary code via a long URL in the first argument (aka the sURL argument).

Vulnerable Systems

Application

  • Cisco Linksys Playerpt Activex Control 1.0.0.15


References

MISC - http://secunia.com/secunia_research/2012-25/

XF - cisco-linksys-activex-bo(77085)

SECTRACK - 1027259

BID - 54588

BUGTRAQ - 20120717 Secunia Research: Cisco Linksys PlayerPT ActiveX Control "SetSource()" Buffer Overflow


Last Updated: 27 May 2016 11:06:38