CVE-2014-4880 Information

Description

Buffer overflow in Hikvision DVR DS-7204 Firmware 2.2.10 build 131009 and other models and versions allows remote attackers to execute arbitrary code via an RTSP PLAY request with a long Authorization header.

Reference

http://packetstormsecurity.com/files/129187/Hikvision-DVR-RTSP-Request-Remote-Code-Execution.html http://www.exploit-db.com/exploits/35356