cve/2008/CVE-2008-5674.md

CVE-2008-5674

Description

Multiple array index errors in the HTTP server in Darkwet Network webcamXP 3.72.440.0 and earlier and beta 4.05.280 and earlier allow remote attackers to cause a denial of service (device crash) and read portions of memory via (1) an invalid camnum parameter to the pocketpc component and (2) an invalid id parameter to the show_gallery_pic component.

POC

Reference

• http://securityreason.com/securityalert/4788

Github

No PoCs found on GitHub currently.