• caglararli@hotmail.com
  • 05386281520

CVE-2024-7441 | Vivotek SD9364 VVTK-0103f httpd read Content-Length stack-based overflow

Çağlar Arlı      -    59 Views

CVE-2024-7441 | Vivotek SD9364 VVTK-0103f httpd read Content-Length stack-based overflow

A vulnerability was found in Vivotek SD9364 VVTK-0103f. It has been declared as critical. This vulnerability affects the function read of the component httpd. The manipulation of the argument Content-Length leads to stack-based buffer overflow. NOTE: This vulnerability only affects products that are no longer supported by the maintainer. This vulnerability was named CVE-2024-7441. The attack can be initiated remotely. Furthermore, there is an exploit available. Vendor was contacted early and confirmed that the affected release tree is end-of-life. It is recommended to apply restrictive firewalling.