CVE-2013-4981 Information

Description

Buffer overflow in cgi-bin/user/Config.cgi in AVTECH AVN801 DVR with firmware 1017-1003-1009-1003 and earlier and possibly other devices allows remote attackers to cause a denial of service (device crash) and possibly execute arbitrary code via a long string in the Network.SMTP.Receivers parameter.

Reference

http://osvdb.org/96693 http://seclists.org/fulldisclosure/2013/Aug/284 http://www.coresecurity.com/advisories/avtech-dvr-multiple-vulnerabilities