CVE-2013-4981

Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier, and possibly other devices, allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the Network.SMTP.Receivers parameter.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:avtech:avn801_dvr_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:avtech:avn801_dvr:-:*:*:*:*:*:*:*

History

21 Nov 2024, 01:56

Type Values Removed Values Added
References () http://osvdb.org/96693 - () http://osvdb.org/96693 -
References () http://seclists.org/fulldisclosure/2013/Aug/284 - Exploit () http://seclists.org/fulldisclosure/2013/Aug/284 - Exploit
References () http://www.coresecurity.com/advisories/avtech-dvr-multiple-vulnerabilities - Exploit () http://www.coresecurity.com/advisories/avtech-dvr-multiple-vulnerabilities - Exploit

Information

Published : 2014-03-03 16:55

Updated : 2024-11-21 01:56


NVD link : CVE-2013-4981

Mitre link : CVE-2013-4981

CVE.ORG link : CVE-2013-4981


JSON object : View

Products Affected

avtech

  • avn801_dvr
  • avn801_dvr_firmware
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer