CVE-2008-0399

Toshiba Surveillix - Memory Corruption

Title source: rule

Description

Multiple buffer overflows in Toshiba Surveillance (Surveillix) RecordSend ActiveX control (MeIpCamX.DLL 1.0.0.4) allow remote attackers to execute arbitrary code via long arguments to the (1) SetPort and (2) SetIpAddress methods.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · htmlremotewindows

https://www.exploit-db.com/exploits/4946

View Code ZIP pw:eip

References (6)

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/39792

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/4946

[Vendor Advisory] http://secunia.com/advisories/28557

[Exploit] http://www.securityfocus.com/bid/27360

[Third Party Advisory] http://www.vupen.com/english/advisories/2008/0214

[Exploit] http://retrogod.altervista.org/rgod_toshiba_control.html

Scores

EPSS 0.1327

EPSS Percentile 94.2%

Details

CWE

CWE-119

Status published

Products (1)

toshiba/surveillix 1.0.0.4

Published Jan 23, 2008

Tracked Since Feb 18, 2026