Required CVE Record Information
Description
Multiple array index errors in the HTTP server in Darkwet Network webcamXP 3.72.440.0 and earlier and beta 4.05.280 and earlier allow remote attackers to cause a denial of service (device crash) and read portions of memory via (1) an invalid camnum parameter to the pocketpc component and (2) an invalid id parameter to the show_gallery_pic component.
References 8 Total
- securityfocus.com: 27875 vdb-entry
- securityfocus.com: 20080219 Access violation and limited informations disclosure in webcamXP 3.72.440.0 mailing-list
- securityreason.com: 4788 third-party-advisory
- http://aluigi.altervista.org/adv/webcamxp-adv.txt
- osvdb.org: 42929 vdb-entry
- secunia.com: 29007 third-party-advisory
- osvdb.org: 42927 vdb-entry
- osvdb.org: 42928 vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 8 Total
- securityfocus.com: 27875 vdb-entryx_transferred
- securityfocus.com: 20080219 Access violation and limited informations disclosure in webcamXP 3.72.440.0 mailing-listx_transferred
- securityreason.com: 4788 third-party-advisoryx_transferred
- http://aluigi.altervista.org/adv/webcamxp-adv.txt x_transferred
- osvdb.org: 42929 vdb-entryx_transferred
- secunia.com: 29007 third-party-advisoryx_transferred
- osvdb.org: 42927 vdb-entryx_transferred
- osvdb.org: 42928 vdb-entryx_transferred