CVE-2013-1606

Ubiquiti AirVision Firmware < 1.1.6 - Remote Code Execution via RTSP DESCRIBE Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2013-1606. PoCs published by Core Security.

AI-analyzed exploit summary This is a Python-based proof-of-concept exploit for CVE-2013-1606, demonstrating a buffer overflow in the Ubiquiti airCam RTSP service. The exploit sends a maliciously crafted RTSP request with an overly long URI to trigger a segmentation fault, potentially leading to remote code execution.

Description

Buffer overflow in the ubnt-streamer RTSP service on the Ubiquiti UBNT AirCam with airVision firmware before 1.1.6 allows remote attackers to execute arbitrary code via a long rtsp: URI in a DESCRIBE request.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Core Security · textdoshardware
https://www.exploit-db.com/exploits/26138

This is a Python-based proof-of-concept exploit for CVE-2013-1606, demonstrating a buffer overflow in the Ubiquiti airCam RTSP service. The exploit sends a maliciously crafted RTSP request with an overly long URI to trigger a segmentation fault, potentially leading to remote code execution.

Classification
Working Poc 100%
Attack Type
Rce
Complexity
Trivial
Reliability
Reliable
Target: Ubiquiti airCam RTSP service (ubnt-streamer) v1.1.5
No auth needed
Prerequisites: Network access to the target device · RTSP service (port 554) exposed
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit exploit x_refsource_exploit-db
http://www.exploit-db.com/exploits/26138/

Scores

EPSS 0.2340
EPSS Percentile 97.5%

Details

CWE
CWE-119
Status published
Products (4)
ui/aircam
ui/aircam_dome
ui/aircam_mini
ui/airvision_firmware < 1.1.5
Published Jul 18, 2013
Tracked Since Feb 18, 2026