CVSS: 7.5EPSS: 95%CPEs: 2EXPL: 3CVE-2014-4880 – Hikvision DVR - RTSP Request Remote Code Execution
https://notcve.org/view.php?id=CVE-2014-4880
Buffer overflow in Hikvision DVR DS-7204 Firmware 2.2.10 build 131009, and other models and versions, allows remote attackers to execute arbitrary code via an RTSP PLAY request with a long Authorization header. Desbordamiento de buffer en Hikvision DVR DS-7204 Firmware 2.2.10 build 131009, y otros modelos y versiones, permite a atacantes remotos ejecutar código arbitrario a través de una solicitud RTSP PLAY con una cabecera de autorización larga. • https://www.exploit-db.com/exploits/35356 http://packetstormsecurity.com/files/129187/Hikvision-DVR-RTSP-Request-Remote-Code-Execution.html http://www.exploit-db.com/exploits/35356 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •