|CVSS SCORE||7.5, (AV:N/AC:L/Au:N/C:P/I:P/A:P)|
Web Camera Server Audio
|TREND MICRO CUSTOMER PROTECTION||Trend Micro TippingPoint IPS customers are protected against this vulnerability by Digital Vaccine protection filter ID 13452. For further product information on the TippingPoint IPS: http://www.tippingpoint.com|
The specific flaw exists within the Connect method provided by the control. By providing a malicious value, an attacker is able to overflow a static buffer on the stack, and could execute arbitrary code in the context of the browser.
12/20/2013 - ZDI disclosed this case to ICS-CERT