CVE-2017-9765 -- gsoapID: oval:org.secpod.oval:def:1900434 | Date: (C)2019-02-28 (M)2023-12-20 |
Class: VULNERABILITY | Family: unix |
Integer overflow in the soap_get function in Genivia gSOAP 2.7.x and 2.8.x before 2.8.48, as used on Axis cameras and other devices, allows remote attackers to execute arbitrary code or cause a denial of service via a large XMLdocument, aka Devil"s Ivy. NOTE: the large document would be blocked by many common web-server configurations on general-purpose computers.
Platform: |
Ubuntu 16.04 |
Ubuntu 14.04 |