CVE Vulnerabilities

CVE-2007-2239

Published: May 07, 2007 | Modified: Jul 29, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
9.3 HIGH
AV:N/AC:M/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Stack-based buffer overflow in the SaveBMP method in the AXIS Camera Control (aka CamImage) ActiveX control before 2.40.0.0 in AxisCamControl.ocx in AXIS 2100, 2110, 2120, 2130 PTZ, 2420, 2420-IR, 2400, 2400+, 2401, 2401+, 2411, and Panorama PTZ allows remote attackers to cause a denial of service (Internet Explorer crash) or execute arbitrary code via a long argument.

Affected Software

Name Vendor Start Version End Version
2110_network_camera Axis * 2.39
2130_ptz_network_camera Axis * 2.39
2120_network_camera Axis * 2.39
2100_network_camera Axis * 2.39
Panorama_ptz_camera Axis * 2.39
2420_network_camera Axis * 2.39
2401_video_server Axis * 2.39
2400_video_server Axis * 2.39
2420-ir_network_camera Axis * 2.39
2411_video_server Axis * 2.39

References