CVE-2010-4234

Camtron and TecVoz CMNC-200 Firmware 1.102A-008 - Denial of Service via Rapid Request Flood

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2010-4234. PoCs published by Trustwave's SpiderLabs.

AI-analyzed exploit summary This Perl script exploits a denial-of-service vulnerability in the CMNC-200 IP Camera by sending repeated HTTP requests with long cookie headers, causing the device to reboot. The attack leverages the camera's inability to handle multiple parallel requests efficiently.

Description

The web server on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to cause a denial of service (device reboot) via a large number of requests in a short time interval.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Trustwave's SpiderLabs · textdoshardware
https://www.exploit-db.com/exploits/15508

This Perl script exploits a denial-of-service vulnerability in the CMNC-200 IP Camera by sending repeated HTTP requests with long cookie headers, causing the device to reboot. The attack leverages the camera's inability to handle multiple parallel requests efficiently.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: CMNC-200 IP Camera
No auth needed
Prerequisites: Network access to the target IP camera
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/15508
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/514753/100/0/threaded

Scores

EPSS 0.0304
EPSS Percentile 85.8%

Details

CWE
CWE-399
Status published
Products (4)
camtron/cmnc-200
camtron/cmnc-200_firmware 1.102a-008
tecvoz/cmnc-200
tecvoz/cmnc-200_firmware 1.102a-008
Published Nov 17, 2010
Tracked Since Feb 18, 2026