CVE-2017-2113

Description

Buffer overflow in TS-WPTCAM firmware version 1.18 and earlier, TS-WPTCAM2 firmware version 1.00, TS-WLCE firmware version 1.18 and earlier, TS-WLC2 firmware version 1.18 and earlier, TS-WRLC firmware version 1.17 and earlier, TS-PTCAM firmware version 1.18 and earlier, TS-PTCAM/POE firmware version 1.18 and earlier allows remote attackers to execute arbitrary OS commands via unspecified vectors.

References

Link	Tags
http://jvn.jp/en/jp/JVN46830433/index.html	vdb entry third party advisory
http://www.securityfocus.com/bid/96620	vdb entry third party advisory
http://www.iodata.jp/support/information/2017/camera201702/	vendor advisory

Frequently Asked Questions

What is the severity of CVE-2017-2113?: CVE-2017-2113 has been scored as a high severity vulnerability.
How to fix CVE-2017-2113?: To fix CVE-2017-2113, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2017-2113 being actively exploited in the wild?: It is possible that CVE-2017-2113 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~2% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2017-2113?: CVE-2017-2113 affects I-O DATA DEVICE, INC. TS-WPTCAM, I-O DATA DEVICE, INC. TS-WPTCAM2, I-O DATA DEVICE, INC. TS-WLCE, I-O DATA DEVICE, INC. TS-WLC2, I-O DATA DEVICE, INC. TS-WRLC, I-O DATA DEVICE, INC. TS-PTCAM/POE.

Description

Category

CWE-119 – Improper Restriction of Operations within the Bounds of a Memory Buffer

References

Frequently Asked Questions