CVE-2008-6898

Saschart Sascam Webcam Server - Memory Corruption

Title source: rule

Description

Buffer overflow in the XHTTP Module 4.1.0.0 in the ActiveX control for SaschArt SasCam Webcam Server 2.6.5 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via a long argument to the Get method and other unspecified methods.

Exploits (4)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16641

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by blake · htmlremotewindows

https://www.exploit-db.com/exploits/14195

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by callAX · htmlremotewindows

https://www.exploit-db.com/exploits/7617

View Code ZIP pw:eip

metasploit WORKING POC LOW

rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/fileformat/sascam_get.rb

View Code ZIP pw:eip

References (4)

[Exploit] http://www.securityfocus.com/bid/33053

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/47654

[Exploit, Third Party Advisory] http://www.exploit-db.com/exploits/14195

[Exploit, Third Party Advisory] https://www.exploit-db.com/exploits/7617

Scores

EPSS 0.6817

EPSS Percentile 98.6%

Details

CWE

CWE-119

Status published

Products (1)

saschart/sascam_webcam_server 2.6.5

Published Aug 05, 2009

Tracked Since Feb 18, 2026