CVE-2012-0284 - Unauthoritative Combs

Description

Stack-based buffer overflow in the SetSource method in the Cisco Linksys PlayerPT ActiveX control 1.0.0.15 in PlayerPT.ocx on the Cisco WVC200 Wireless-G PTZ Internet video camera allows remote attackers to execute arbitrary code via a long URL in the first argument (aka the sURL argument).

Reference

http://secunia.com/secunia_research/2012-25/ http://archives.neohapsis.com/archives/bugtraq/2012-07/0113.html http://www.securityfocus.com/bid/54588 http://www.securitytracker.com/id?1027259 https://exchange.xforce.ibmcloud.com/vulnerabilities/77085