The vulnerability is a stack overflow in software running on the camera, specifically a service that processes remote commands, Senrio said in its report. “The vulnerability allows code injection and causes a password reset, granting the attacker remote access to the camera feed,” Senrio said. “Thus, even if users create a strong password, this type of vulnerability can override them.” Read more at Threatpost |