CamShot Remote Buffer Overflow Vulnerability
BID:1685
Info
CamShot Remote Buffer Overflow Vulnerability
| Bugtraq ID: | 1685 |
| Class: | Boundary Condition Error |
| CVE: |
CVE-2000-0836 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Sep 15 2000 12:00AM |
| Updated: | Jul 11 2009 03:56AM |
| Credit: | This vulnerability was discovered by Beyond Security's SecuriTeam and posted to Bugtraq on Fri, 15 Sep 2000. |
| Vulnerable: |
BroadGun Software CamShot WebCam 2.6 Trial Version |
| Not Vulnerable: | |
Discussion
CamShot Remote Buffer Overflow Vulnerability
CamShot is a Windows 95/98/2000/NT web server that serves up web pages containing time stamped images captured from a video camera. The images can be viewed from anywhere on the network with a web browser. CamShot works with Video For Windows compatible video equipment. Certain trial versions of this software contain a possibly exploitable remote buffer overflow by way of a overly long user supplied 'Authorization' password.
It is not known if supported commercial versions of this software contain the same vulnerability.
CamShot is a Windows 95/98/2000/NT web server that serves up web pages containing time stamped images captured from a video camera. The images can be viewed from anywhere on the network with a web browser. CamShot works with Video For Windows compatible video equipment. Certain trial versions of this software contain a possibly exploitable remote buffer overflow by way of a overly long user supplied 'Authorization' password.
It is not known if supported commercial versions of this software contain the same vulnerability.
Exploit / POC
CamShot Remote Buffer Overflow Vulnerability
This example is taken from the advisory on this subject which is included in it's entirety in the 'Credit' section of this vulnerability:
Example:
GET / HTTP/1.1<enter>
Authorization: Basic ['a'x325]<enter><enter>
This example is taken from the advisory on this subject which is included in it's entirety in the 'Credit' section of this vulnerability:
Example:
GET / HTTP/1.1<enter>
Authorization: Basic ['a'x325]<enter><enter>
Solution / Fix
CamShot Remote Buffer Overflow Vulnerability
Solution:
Currently the SecurityFocus staff are not ware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not ware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
References
CamShot Remote Buffer Overflow Vulnerability
References:
References:
- BroadGun Software HomePage (BroadGun Software)