Description
Stack-based buffer overflow in the OpenForIPCamTest method in the RTSPVIDEO.rtspvideoCtrl.1 (aka SStreamVideo) ActiveX control in Moxa SoftCMS before 1.3 allows remote attackers to execute arbitrary code via the StrRtspPath parameter.
References (3)
Core 3
Core References
Third Party Advisory x_refsource_misc
http://zerodayinitiative.com/advisories/ZDI-15-120/
Third Party Advisory, US Government Resource x_refsource_misc
https://ics-cert.us-cert.gov/advisories/ICSA-15-153-02
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/74966
Scores
EPSS
0.0358
EPSS Percentile
87.9%
Details
CWE
CWE-119
Status
published
Products (1)
moxa/softcms
< 1.2
Published
Jun 05, 2015
Tracked Since
Feb 18, 2026