Intrusion PreventionAxis.Camera.ActiveX.Control.SaveBMP.Method.Code.Execution
Description
Axis Communications provides an ActiveX control for viewing motion JPEG streams in Microsoft development tools and Microsoft Internet Explorer. The ActiveX control, provided by AxisCamControl.ocx, is known as "CamImage" or "Axis Camera Control." The SaveBMP() method of this control contains a stack buffer overflow.
Affected Products
AXIS 2100, AXIS 2110, AXIS 2120, AXIS 2130 PTZ, AXIS 2420, AXIS 2420-IR, AXIS 2400, AXIS 2400+, AXIS 2401, AXIS 2401+, AXIS 2411, AXIS Panorama PTZ.
Impact
Arbitrary code execution.
Recommended Actions
1.Apply an update
This vulnerability is addressed in the Axis Camera Control update. This update will install version 2.40.0.0 of the ActiveX control. Details for the security update are available in the Axis Camera Control ActiveX Update PDF document. If you cannot install the update, please use the following workarounds
2. Disable the Axis CamImage ActiveX control in Internet Explorer
The vulnerable ActiveX control can be disabled in Internet Explorer by setting the kill bit for the following CLSID:
{917623D1-D8E5-11D2-BE8B-00104B06BDE3}
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Status | Detail |
|---|---|---|---|
| 2020-12-11 | 16.978 |
Removed
|
| ID | 14526 |
| Created | May 08, 2007 |
| Updated | Nov 15, 2021 |
| CVE ID | |
| Risk |
|
| Exploit Prediction Score | 27.41% |
| Default Action | pass |
| Active | |
| Affected OS | Windows |
| Affected App | IE |
| Profile Type | Code Injection |