CVE-2017-8412

Name: CVE-2017-8412
Creator: NVD / NIST
Published: 2019-07-02T21:15:10.103+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.8/10EPSS 5.73%

Last modified Jun 17, 2026

CVE-2017-8412 is a high-severity vulnerability rated 8.8/10 on the CVSS scale. An issue was discovered on D-Link DCS-1100 and DCS-1130 devices. The device has a custom binary called mp4ts under the /var/www/video folder. EPSS estimates a 5.73% chance of exploitation in the next 30 days.

Description

An issue was discovered on D-Link DCS-1100 and DCS-1130 devices. The device has a custom binary called mp4ts under the /var/www/video folder. It seems that this binary dumps the HTTP VERB in the system logs. As a part of doing that it retrieves the HTTP VERB sent by the user and uses a vulnerable sprintf function at address 0x0000C3D4 in the function sub_C210 to copy the value into a string and then into a log file. Since there is no bounds check being performed on the environment variable at address 0x0000C360 this results in a stack overflow and overwrites the PC register allowing an attacker to execute buffer overflow or even a command injection attack.

Metrics

CVSS 3.1

8.8/10

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS Probability

5.73%

92.1th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Dlink	Dcs-1130 Firmware	All versions
Dlink	Dcs-1100 Firmware	All versions

References

http://packetstormsecurity.com/files/153226/Dlink-DCS-1130-Command-Injection-CSRF-Stack-Overflow.htmlThird Party Advisory, VDB Entry
https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Dlink_DCS_1130_security.pdfNot Applicable, Third Party Advisory
https://seclists.org/bugtraq/2019/Jun/8Mailing List, Third Party Advisory
http://packetstormsecurity.com/files/153226/Dlink-DCS-1130-Command-Injection-CSRF-Stack-Overflow.htmlThird Party Advisory, VDB Entry
https://github.com/ethanhunnt/IoT_vulnerabilities/blob/master/Dlink_DCS_1130_security.pdfNot Applicable, Third Party Advisory
https://seclists.org/bugtraq/2019/Jun/8Mailing List, Third Party Advisory

Timeline

Published: Jul 2, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2017-8412?

How severe is CVE-2017-8412?

CVE-2017-8412 has a CVSS score of 8.8/10 (HIGH severity). The EPSS model estimates a 5.73% probability of exploitation in the next 30 days.

How do I fix CVE-2017-8412?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-8412?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST