An exploitable code execution vulnerability exists in the QR code scanning functionality of Yi Home Camera 27US 18.104.22.168D. A specially crafted QR Code can cause a buffer overflow, resulting in code execution. The trans_info call can overwrite a buffer of size 0x104, which is more than enough to overflow the return address from the ssid_dst field.
published: 2. 11. 2018