TP-Link Tapo C200 Stack-Based Buffer Overflow Vulnerability in RTSP Authentication

A stack-based buffer overflow vulnerability has been identified in the TP-Link Tapo C200 v5 camera model. This issue arises in the Real-Time Streaming Protocol (RTSP) authentication process, where the Authorization header field lengths are not properly validated. Exploitation of this vulnerability can be triggered by sending a crafted authentication request. Successful exploitation causes the RTSP core service process to crash, leading to an automatic system reboot. This disruption creates a denial-of-service condition, preventing legitimate users from accessing the camera's live video stream or management interface until the service is restored.

Impact

Exploitation of this vulnerability causes the RTSP core service process to crash, triggering an automatic system reboot. This results in a denial-of-service condition, disrupting access to the camera's live video stream and management interface until the service restarts.

Remediation

Users are advised to update to the latest firmware version. The updated firmware can be downloaded from the TP-Link website or through the TP-Link Tapo app. For specific download links, refer to the TP-Link Tapo C200 v5 support page.