A vulnerability was found in Foscam C1 Indoor HD Camera 2.52.2.43 (Network Camera Software). It has been declared as critical. This vulnerability affects an unknown code block of the component Multi-Camera Interface. The manipulation as part of a Application leads to a memory corruption vulnerability. The CWE definition for the vulnerability is CWE-119. The product performs operations on a memory buffer, but it can read from or write to a memory location that is outside of the intended boundary of the buffer. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:

An exploitable buffer overflow vulnerability exists in the Multi-Camera interface used by the Foscam C1 Indoor HD Camera running application firmware 2.52.2.43. A specially crafted request on port 10000 can cause a buffer overflow resulting in overwriting arbitrary data.

The bug was discovered 11/13/2017. The weakness was shared 09/19/2018 (Website). The advisory is available at talosintelligence.com. This vulnerability was named CVE-2017-2875 since 11/30/2016. The exploitation appears to be easy. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. The technical details are unknown and an exploit is not available.

The vulnerability was handled as a non-public zero-day exploit for at least 310 days. During that time the estimated underground price was around $0-$5k.

Proper firewalling of 10000 is able to address this issue.

The entries VDB-124238, VDB-124237, VDB-124236 and VDB-124235 are related to this item. Once again VulDB remains the best source for vulnerability data.

Productinfo

Type

• Network Camera Software

Vendor

• Foscam

Name

• C1 Indoor HD Camera

Version

• 2.52.2.43

License

• commercial

CPE 2.3info

• 🔍

CPE 2.2info

• 🔍

CVSSv4info

CVSSv3info

CVSSv2info

Exploitinginfo

Threat Intelligenceinfo

Countermeasuresinfo

Timelineinfo

Sourcesinfo

Entryinfo

Discussion