Security News > 2017 > July > Remotely Exploitable Flaw Puts Millions of Internet-Connected Devices at Risk (The Hackers News)

Remotely Exploitable Flaw Puts Millions of Internet-Connected Devices at Risk (The Hackers News)
2017-07-18 11:04

Security researchers have discovered a critical remotely exploitable vulnerability in an open-source software development library used by major manufacturers of the Internet-of-Thing devices that eventually left millions of devices vulnerable to hacking. The vulnerability (CVE-2017-9765), discovered by researchers at the IoT-focused security firm Senrio, resides in the software development


News URL

http://feedproxy.google.com/~r/TheHackersNews/~3/H9mfmLZY6VQ/gsoap-iot-device-hacking.html

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2017-07-20 CVE-2017-9765 Integer Overflow or Wraparound vulnerability in Genivia Gsoap
Integer overflow in the soap_get function in Genivia gSOAP 2.7.x and 2.8.x before 2.8.48, as used on Axis cameras and other devices, allows remote attackers to execute arbitrary code or cause a denial of service (stack-based buffer overflow and application crash) via a large XML document, aka Devil's Ivy.
network
high complexity
genivia CWE-190
8.1
8.1