CVE-2010-2505

SaschArt SasCAM Webcam Server <= 2.7 - Denial of Service via Long GET Request

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-2505. PoCs published by fl0 fl0w.

AI-analyzed exploit summary This exploit targets a boundary condition error in SasCam's HTTP server, causing a denial-of-service (DoS) by sending malformed HTTP GET requests with excessively long strings. The PoC supports both single requests and flooding modes.

Description

Soft SaschArt SasCAM Webcam Server 2.6.5, 2.7, and earlier allows remote attackers to cause a denial of service (crash) via a large number of requests with a long line, as demonstrated using a long GET request.

Exploits (1)

exploitdb WORKING POC VERIFIED

by fl0 fl0w · cdoswindows

https://www.exploit-db.com/exploits/13888

View Code ZIP pw:eip

This exploit targets a boundary condition error in SasCam's HTTP server, causing a denial-of-service (DoS) by sending malformed HTTP GET requests with excessively long strings. The PoC supports both single requests and flooding modes.

Classification

Working Poc 95%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: SasCam 2.65, 2.7 and lower

No auth needed

Prerequisites: Network access to the target's HTTP server port

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit exploit x_refsource_exploit-db

http://www.exploit-db.com/exploits/13888

Vendor Advisory third-party-advisory x_refsource_secunia

http://secunia.com/advisories/40214

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/65544

Scores

EPSS 0.0268

EPSS Percentile 83.9%

Details

CWE

CWE-20

Status published

Products (2)

saschart/sascam_webcam_server 2.6.5

saschart/sascam_webcam_server < 2.7

Published Jun 28, 2010

Tracked Since Feb 18, 2026