• caglararli@hotmail.com
  • 05386281520

CVE-2024-7439 | Vivotek CC8160 VVTK-0100d httpd read Content-Length stack-based overflow

Çağlar Arlı      -    22 Views

CVE-2024-7439 | Vivotek CC8160 VVTK-0100d httpd read Content-Length stack-based overflow

A vulnerability was found in Vivotek CC8160 VVTK-0100d and classified as critical. Affected by this issue is the function read of the component httpd. The manipulation of the argument Content-Length leads to stack-based buffer overflow. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability is handled as CVE-2024-7439. The attack may be launched remotely. Furthermore, there is an exploit available. Vendor was contacted early and confirmed that the affected release tree is end-of-life. It is recommended to apply restrictive firewalling.