Off-by-one error in the read_client function in webhttpd.c in Motion 3.2.10 and earlier might allow remote attackers to execute arbitrary code via a long request to a Motion HTTP Control interface, which triggers a stack-based buffer overflow with some combinations of processor architecture and compiler.
Vector
NETWORK
Complexity
LOW
Authentication
NONE
Confidentiality
COMPLETE
Integrity
COMPLETE
Availability
COMPLETE
Lavrsen Motion 3.2.7 (not an official CPE)
Lavrsen Motion 3.2.8 (not an official CPE)
Lavrsen Motion 3.2.9 (not an official CPE)
Lavrsen Motion 3.1.19 (not an official CPE)
Lavrsen Motion 3.2.2 (not an official CPE)
Lavrsen Motion 3.1.20 (not an official CPE)
Lavrsen Motion 3.2.10 (not an official CPE)
Lavrsen Motion 3.2.6 (not an official CPE)
Lavrsen Motion 3.1.18 (not an official CPE)
Lavrsen Motion 3.2.1 (not an official CPE)
Lavrsen Motion 3.2.3 (not an official CPE)
Lavrsen Motion 3.1.17 (not an official CPE)
Lavrsen Motion 3.2.4 (not an official CPE)
Lavrsen Motion 3.2.5 (not an official CPE)