Primary

Context

Foscam Video Management System Buffer Overflow Denial-of-Service Vulnerability

Vulnerability

A buffer overflow vulnerability has been identified in Foscam Video Management System version 1.1.6.6. The issue resides in the UID field, where local attackers can crash the application by sending an excessively long string. During the device addition process, a 5000-character buffer can be inserted into the UID parameter, triggering an application crash when the Login Check function is executed.

Impact

Exploitation of this vulnerability leads to a denial-of-service condition, causing the application to crash.

Reproduction

The vulnerability can be reproduced by using a Python script to generate a 5000-character buffer, which is then copied into the UID field while adding a device in the application. Once the Login Check is clicked, the application crashes.

Added: Feb 20, 2026, 11:31 PM

Updated: Feb 20, 2026, 11:31 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

3.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

2.5

exploitability

4.6

remediation

0.0

relevance

3.2

threat

6.4

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Foscam Video Management System Buffer Overflow Denial-of-Service Vulnerability

Vulnerability

Impact

Reproduction

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating