Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in NVR WebViewer on Hanwah Techwin SRN-472s 1.07_190502 devices, and other SRN-x devices before 2019-05-03. A system crash and reboot can be achieved by submitting a long username in excess of 117 characters. The username triggers a buffer overflow in the main process controlling operation of the DVR system, rendering services unavailable during the reboot operation. A repeated attack affects availability as long as the attacker has network access to the device.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Hanwah Techwin SRN-472s和其他SRN系列产品NVR WebViewer 缓冲区错误漏洞
Vulnerability Description
Hanwah Techwin SRN-472s是韩国韩华技佳(Hanwah Techwin)公司的一款网络视频录像机。NVR WebViewer是运行在其中的一套基于Web的监控视频管理系统。 Hanwah Techwin SRN-472s 1.07_190502版本和其他SRN系列产品( 2019-05-03之前版本)中的NVR WebViewer存在缓冲区错误漏洞。该漏洞源于网络系统或产品在内存上执行操作时,未正确验证数据边界,导致向关联的其他内存位置上执行了错误的读写操作。攻击者可利用该漏洞导致缓冲
CVSS Information
N/A
Vulnerability Type
N/A