CVE-2012-5306

Camera Stream Client < - Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2012-5306. PoCs published by rgod.

AI-analyzed exploit summary This exploit demonstrates a stack-based buffer overflow in the D-Link SecuriCam DCS-5605 ActiveX control (DcsCliCtrl.dll) via the SelectDirectory() method, which uses an unsafe lstrcpyW() call. The PoC includes shellcode and a heap spray to achieve remote code execution in Internet Explorer 7/8.

Description

Stack-based buffer overflow in the SelectDirectory method in DcsCliCtrl.dll in Camera Stream Client ActiveX Control, as used in D-Link DCS-5605 PTZ IP Network Camera, allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long string argument.

Exploits (1)

exploitdb WORKING POC VERIFIED

by rgod · textremotehardware

https://www.exploit-db.com/exploits/18673

View Code ZIP pw:eip

This exploit demonstrates a stack-based buffer overflow in the D-Link SecuriCam DCS-5605 ActiveX control (DcsCliCtrl.dll) via the SelectDirectory() method, which uses an unsafe lstrcpyW() call. The PoC includes shellcode and a heap spray to achieve remote code execution in Internet Explorer 7/8.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: D-Link DCS-5605 Network Surveillance ActiveX Control (DcsCliCtrl.dll v1.0.0.4519)

No auth needed

Prerequisites: Victim must use Internet Explorer 7/8 · ActiveX control must be installed and enabled · User interaction required to trigger SelectDirectory()

MITRE ATT&CK

T1189 - Drive-by Compromise T1203 - Exploitation for Client Execution

devstral-2 · analyzed Feb 16, 2026 Full analysis →