Description
Heap-based buffer overflow in the CamImage.CamImage.1 ActiveX control in AxisCamControl.ocx in AXIS Camera Control 2.40.0.0 allows remote attackers to execute arbitrary code via a long image_pan_tilt property value.
Affected products
- axis / axis_camera_control2.40.0.0 – 2.40.0.0
References
- MISChttp://secunia.com/secunia_research/2008-58/
- MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/48176
- MISChttp://www.securityfocus.com/bid/33408
- MISChttp://osvdb.org/51532
- VENDOR_ADVISORYhttp://secunia.com/advisories/33444
- MISChttp://www.axis.com/techsup/software/acc/files/acc_security_update_090119.pdf
- VENDOR_ADVISORYhttp://www.vupen.com/english/advisories/2009/0228
- MISChttp://www.securityfocus.com/archive/1/500334/100/0/threaded