Computer Security
[EN] securityvulns.ru no-pyccku


AVTech digital video recorders multiple security vulnerabilities
Published:09.10.2013
Source:
SecurityVulns ID:13345
Type:remote
Threat Level:
5/10
Description:RTSP parsing buffer overflow, web interface buffer overflow, protection bypass.
Affected:AVTECH : AVTECH AVN801
CVE:CVE-2013-4982
 CVE-2013-4981 (Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the Network.SMTP.Receivers parameter.)
 CVE-2013-4980 (Buffer overflow in the RTSP Packet Handler in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the URI in an RTSP SETUP request.)
Original documentdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2013-0726 - AVTECH DVR multiple vulnerabilities (09.10.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod