Vulnerability Details CVE-2008-0399
Multiple buffer overflows in Toshiba Surveillance (Surveillix) RecordSend ActiveX control (MeIpCamX.DLL 1.0.0.4) allow remote attackers to execute arbitrary code via long arguments to the (1) SetPort and (2) SetIpAddress methods.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.131
EPSS Ranking 93.7%
CVSS Severity
CVSS v2 Score 6.8
References
- http://retrogod.altervista.org/rgod_toshiba_control.html
- http://secunia.com/advisories/28557
- http://www.securityfocus.com/bid/27360
- http://www.vupen.com/english/advisories/2008/0214
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39792
- https://www.exploit-db.com/exploits/4946
- http://retrogod.altervista.org/rgod_toshiba_control.html
- http://secunia.com/advisories/28557
- http://www.securityfocus.com/bid/27360
- http://www.vupen.com/english/advisories/2008/0214
- https://exchange.xforce.ibmcloud.com/vulnerabilities/39792
- https://www.exploit-db.com/exploits/4946
Products affected by CVE-2008-0399
-
cpe:2.3:a:toshiba:surveillix:1.0.0.4