CCTV Calculator

CVE-2019-6973

Sricam IP CCTV cameras are vulnerable to denial of service via multiple incomplete HTTP requests because the web server (based on gSOAP 2.8.x) is configured for an iterative queueing approach (aka non-threaded operation) with a timeout of several seconds.

EXPLOIT-DB: https://www.exploit-db.com/exploits/46261/
MISC: http://packetstormsecurity.com/files/151377/Sricam-gSOAP-2.8-Denial-Of-Service.html
MISC: https://github.com/bitfu/sricam-gsoap2.8-dos-exploit
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2019-6973

published: 17. 3. 2019