Security Advisory

CVE-2017-2844

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-06-29 17:00:00

Last updated 2024-09-16 19:00:30

Assigner talos

State PUBLISHED

Description

In the web management interface in Foscam C1 Indoor HD cameras with application firmware 2.52.2.37, a specially crafted HTTP request can allow for a user to inject arbitrary data in the "msmtprc" configuration file resulting in command execution. An attacker can simply send an HTTP request to the device to trigger this vulnerability.

← Browse all CVEs View on cve.org ↗