CVE-2015-1000 Information

Description

Stack-based buffer overflow in the OpenForIPCamTest method in the RTSPVIDEO.rtspvideoCtrl.1 (aka SStreamVideo) ActiveX control in Moxa SoftCMS before 1.3 allows remote attackers to execute arbitrary code via the StrRtspPath parameter.

Reference

http://www.securityfocus.com/bid/74966 http://zerodayinitiative.com/advisories/ZDI-15-120/ https://ics-cert.us-cert.gov/advisories/ICSA-15-153-02