Details of VAR-201712-0119

ID

VAR-201712-0119

CVE

CVE-2017-16725

TITLE

Xiongmai Technology IP Cameras and DVRs Stack Buffer Overflow Vulnerability

Trust: 0.8

sources: IVD: e2df8100-39ab-11e9-aca3-000c29342cb1 // CNVD: CNVD-2017-36865

DESCRIPTION

A Stack-based Buffer Overflow issue was discovered in Xiongmai Technology IP Cameras and DVRs using the NetSurveillance Web interface. The stack-based buffer overflow vulnerability has been identified, which may allow an attacker to execute code remotely or crash the device. After rebooting, the device restores itself to a more vulnerable state in which Telnet is accessible. Xiongmai Technology IP Camera and DVR Contains a buffer error vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Xiongmai IPCameraModule and DVR are products of XiongMai. XiongmaiIPCameraModule is an IP camera module product. The DVR is a hard disk recorder. Xiongmai IP Camera Module and DVR are prone to a stack-based buffer-overflow vulnerability because it fails to perform adequate boundary checks on user-supplied input. Failed exploit attempts will likely cause a denial-of-service condition

Trust: 2.79

sources: NVD: CVE-2017-16725 // JVNDB: JVNDB-2017-011817 // CNVD: CNVD-2017-36865 // BID: 102125 // IVD: e2df8100-39ab-11e9-aca3-000c29342cb1 // VULHUB: VHN-107676 // VULMON: CVE-2017-16725

IOT TAXONOMY

category:	['ICS', 'Network device']	sub_category:	-	Trust: 0.6
category:	['ICS']	sub_category:	-	Trust: 0.2

sources: IVD: e2df8100-39ab-11e9-aca3-000c29342cb1 // CNVD: CNVD-2017-36865

AFFECTED PRODUCTS

vendor:	xiongmaitech	model:	ipg-50hv20psb-s	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ipg-83h20pa-s	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ipg-hp500nr-s	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ipg-83h20pa-a	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ipg-50hv20psa-s	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ivg-hp203y-se	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ipg-80he20ps-s	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ivg-hp203y-ae	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ipg-50hv20psb-a	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ipg-53h13pe-wk-4f	scope:	eq	version:	-	Trust: 1.6
vendor:	xiongmaitech	model:	ahb7016t-lm-v3	scope:	eq	version:	4.02.r11.3070	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-gl-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pl-ae	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016t-lme-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008f8-g-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h20pl-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13p-ae	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pe-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-83h40af	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53hv13pa-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-83h40pl-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50h10pe-wrc	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016t-lm-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53x13pt-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pet-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pe-wk	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-54h13pe-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7804r-lms-v3	scope:	eq	version:	4.02.r11.nat.onvifc.20171019	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7032f4-lm-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-53hv13pe-wr	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-lm-v3	scope:	eq	version:	4.02.r11.3070	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008f2-g-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-g-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53x13pa-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008f2-h	scope:	eq	version:	4.02.r11.3070	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv20pet-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h20pl-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50h10pe-wrm	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-lme-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-53h13pe-wrc	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7808r-mh-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pls-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-53v13pl-wr	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv10pt-a	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53hv13pa-wp	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7032f2-lm-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13p-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-83h20pl-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h20py-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53x13pe-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016t-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7808r-ms-v3	scope:	eq	version:	4.02.r11.nat.onvifc.20170327	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7804r-ms-v3	scope:	eq	version:	4.02.r11.nat.onvifc.20170327	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016t-mh-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016t4-mh-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv20pes-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016f8-gl-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-mh-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-80h20pt-a	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50hv10pt-wr	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pl-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t4-h-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7804r-lm-v3	scope:	eq	version:	4.02.r11.nat.onvifc.20171120	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-lm-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pes-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv10pt-wp	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h20pl-ae	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50hv20pe-wr	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-83h50p-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pl-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016f2-gl-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-83h50p-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-lm-v3	scope:	eq	version:	4.02.r11.3070	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-52h10pl-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pl-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016t-mh-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-lme-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pl-ae	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-54h20pl-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7032f4-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53hv13pa-a	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-80h20pt-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016f8-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pl-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h10pe-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-mh-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv10pt-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h20pl-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pe-wp	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv10pv-a	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7032f2-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53hv13pt-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7032f8-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50h10pe-wr	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50h10pe-o\	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008f8-h	scope:	eq	version:	4.02.r11.3070	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-h-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008f4-h	scope:	eq	version:	4.02.r11.3070	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pl-r	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pe-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50x10pt-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-mh-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016t4-gs-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13p-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-83h40pl-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-52h10pl-p	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-gl-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pl-r	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t4-h-v2	scope:	eq	version:	_firmware	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv20pet-a	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50x10pe-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pl-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pe-sl	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pe-wk	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-53h13pe-wrm	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50v10pl-wr	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-83h20pl-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-53h13pe-wr	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h20pt-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pl-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008t-h-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7032f4-lm-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7808r-lm-v3	scope:	eq	version:	4.02.r11.nat.onvifc.20171120	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7016f4-gl-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7032f8-lm-v2	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7008f4-g-v4	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pe-wp	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50hv10pv-s	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13pes-sl	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-50h10pe-wk-2f	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipm-50v10pl-wrc	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ipg-53h13p-b	scope:	eq	version:	-	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7804r-mh-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmaitech	model:	ahb7004t-mh-v3	scope:	eq	version:	4.02.r11.7601	Trust: 1.0
vendor:	xiongmai	model:	ahb7008f8-h	scope:	-	version:	-	Trust: 0.8
vendor:	xiongmai	model:	ipg-50h10pl-p	scope:	-	version:	-	Trust: 0.8
vendor:	xiongmai	model:	ipm-50hv10pt-wr	scope:	-	version:	-	Trust: 0.8
vendor:	xiongmai	model:	ivg-hp203y-ae	scope:	-	version:	-	Trust: 0.8
vendor:	xiongmai	model:	technology ip cameras and dvrs	scope:	-	version:	-	Trust: 0.6
vendor:	ahb7008t h v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.4
vendor:	ipg 53hv13pt s	model:	-	scope:	eq	version:	-	Trust: 0.4
vendor:	ipg 54h20pl s	model:	-	scope:	eq	version:	-	Trust: 0.4
vendor:	xiongmai	model:	xvi dvr board	scope:	eq	version:	0	Trust: 0.3
vendor:	xiongmai	model:	ip camera module	scope:	eq	version:	0	Trust: 0.3
vendor:	xiongmai	model:	ahd dvr board	scope:	eq	version:	0	Trust: 0.3
vendor:	ahb7008f8 h	model:	4.02.r11.3070	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016t mh v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t4 h v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t4 h v2	model:	-	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7032f8 lm v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7032f4 lm v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7808r ms v3	model:	4.02.r11.nat.onvifc.20170327	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7804r ms v3	model:	4.02.r11.nat.onvifc.20170327	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016t lm v3	model:	4.02.r11.3070	scope:	-	version:	-	Trust: 0.2
vendor:	ipm 50h10pe wrm	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 53h13pe wrm	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h40af	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 50v10pl wrc	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 50h10pe wrc	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50x10pt s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50x10pe s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53x13pt s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53x13pa s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53x13pe s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 53h13pe wrc	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 53hv13pe wr	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 53v13pl wr	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 53h13pe wr	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pe wk 2f	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h20pl p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h20pl b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53hv13pa a	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53hv13pa s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 50hv20pe wr	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv10pt a	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv10pt s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv10pv a	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv10pv s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 80h20pt a	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 80h20pt s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h20pt s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h20py s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pe wk 4f	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h20pa a	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h20pa s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv20psa s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv20psb a	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv20psb s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ivg hp203y ae	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ivg hp203y se	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg hp500nr s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 80he20ps s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ahb7008f4 h	model:	4.02.r11.3070	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t lm v3	model:	4.02.r11.3070	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7004t lm v3	model:	4.02.r11.3070	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016t4 gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016t gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7004t gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016t mh v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t mh v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7004t mh v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t gl v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008f2 h	model:	4.02.r11.3070	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7004t gl v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7004t g v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016f8 gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016f8 gl v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016f4 gl v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016f2 gl v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7808r lm v3	model:	4.02.r11.nat.onvifc.20171120	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7804r lm v3	model:	4.02.r11.nat.onvifc.20171120	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7804r lms v3	model:	4.02.r11.nat.onvifc.20171019	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008f8 g v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t mh v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008f4 g v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008f2 g v4	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7032f4 lm v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7032f2 lm v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7032f8 gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7032f4 gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7032f2 gs v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7016t lme v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7008t lme v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7004t lme v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7004t mh v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7808r mh v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ahb7804r mh v3	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ipg 50h10pl p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pl b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pl ae	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pl s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 52h10pl p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 52h10pl b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pet s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pls s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ahb7004t h v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ipg 53h13pes s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pes sl	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pl p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pl b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pl ae	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pl s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13p p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13p b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13p ae	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13p s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ahb7016t lm v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ipg 83h40pl b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h40pl p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h50p p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 83h50p b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h10pe s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pe sl	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pe s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 50hv10pt wr	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 50v10pl wr	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 50h10pe wr	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ahb7008t lm v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ipg 54h13pe s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pl r	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipm 50h10pe o r	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pl r	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pe wp	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv10pt wp	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53hv13pa wp	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pe wp	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ahb7016t4 mh v2	model:	4.02.r11.7601	scope:	-	version:	-	Trust: 0.2
vendor:	ipg 53h20pl p	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h20pl b	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h20pl ae	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h20pl s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv20pet a	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv20pet s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50hv20pes s	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 50h10pe wk	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pe wk	model:	-	scope:	eq	version:	-	Trust: 0.2
vendor:	ipg 53h13pe s	model:	-	scope:	eq	version:	-	Trust: 0.2

sources: IVD: e2df8100-39ab-11e9-aca3-000c29342cb1 // CNVD: CNVD-2017-36865 // BID: 102125 // JVNDB: JVNDB-2017-011817 // CNNVD: CNNVD-201712-359 // NVD: CVE-2017-16725

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-16725
value:	CRITICAL
Trust: 1.0
NVD:	CVE-2017-16725
value:	CRITICAL
Trust: 0.8
CNVD:	CNVD-2017-36865
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201712-359
value:	CRITICAL
Trust: 0.6
IVD:	e2df8100-39ab-11e9-aca3-000c29342cb1
value:	CRITICAL
Trust: 0.2
VULHUB:	VHN-107676
value:	HIGH
Trust: 0.1
VULMON:	CVE-2017-16725
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2017-16725
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.9
CNVD:	CNVD-2017-36865
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
IVD:	e2df8100-39ab-11e9-aca3-000c29342cb1
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.9 [IVD]
Trust: 0.2
VULHUB:	VHN-107676
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-16725
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.0
Trust: 1.8

sources: IVD: e2df8100-39ab-11e9-aca3-000c29342cb1 // CNVD: CNVD-2017-36865 // VULHUB: VHN-107676 // VULMON: CVE-2017-16725 // JVNDB: JVNDB-2017-011817 // CNNVD: CNNVD-201712-359 // NVD: CVE-2017-16725

PROBLEMTYPE DATA

problemtype:

CWE-119

Trust: 1.9

sources: VULHUB: VHN-107676 // JVNDB: JVNDB-2017-011817 // NVD: CVE-2017-16725

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201712-359

TYPE

Buffer overflow

Trust: 0.8

sources: IVD: e2df8100-39ab-11e9-aca3-000c29342cb1 // CNNVD: CNNVD-201712-359

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-011817

PATCH

title:

Top Page

url:

http://www.xiongmaitech.com/en/index.php

Trust: 0.8

sources: JVNDB: JVNDB-2017-011817

EXTERNAL IDS

db:	NVD	id:	CVE-2017-16725	Trust: 3.7
db:	ICS CERT	id:	ICSA-17-341-01	Trust: 3.5
db:	BID	id:	102125	Trust: 2.1
db:	CNNVD	id:	CNNVD-201712-359	Trust: 0.9
db:	CNVD	id:	CNVD-2017-36865	Trust: 0.8
db:	JVNDB	id:	JVNDB-2017-011817	Trust: 0.8
db:	IVD	id:	E2DF8100-39AB-11E9-ACA3-000C29342CB1	Trust: 0.2
db:	VULHUB	id:	VHN-107676	Trust: 0.1
db:	VULMON	id:	CVE-2017-16725	Trust: 0.1

sources: IVD: e2df8100-39ab-11e9-aca3-000c29342cb1 // CNVD: CNVD-2017-36865 // VULHUB: VHN-107676 // VULMON: CVE-2017-16725 // BID: 102125 // JVNDB: JVNDB-2017-011817 // CNNVD: CNNVD-201712-359 // NVD: CVE-2017-16725

REFERENCES

url:	https://ics-cert.us-cert.gov/advisories/icsa-17-341-01	Trust: 3.5
url:	http://www.securityfocus.com/bid/102125	Trust: 1.9
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-16725	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-16725	Trust: 0.8
url:	http://www.xiongmaitech.com/en/	Trust: 0.3
url:	https://cwe.mitre.org/data/definitions/119.html	Trust: 0.1
url:	https://nvd.nist.gov	Trust: 0.1

sources: CNVD: CNVD-2017-36865 // VULHUB: VHN-107676 // VULMON: CVE-2017-16725 // BID: 102125 // JVNDB: JVNDB-2017-011817 // CNNVD: CNNVD-201712-359 // NVD: CVE-2017-16725

CREDITS

Clinton Mielke

Trust: 0.9

sources: BID: 102125 // CNNVD: CNNVD-201712-359

SOURCES

db:	IVD	id:	e2df8100-39ab-11e9-aca3-000c29342cb1
db:	CNVD	id:	CNVD-2017-36865
db:	VULHUB	id:	VHN-107676
db:	VULMON	id:	CVE-2017-16725
db:	BID	id:	102125
db:	JVNDB	id:	JVNDB-2017-011817
db:	CNNVD	id:	CNNVD-201712-359
db:	NVD	id:	CVE-2017-16725

LAST UPDATE DATE

2025-04-20T23:25:53.937000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-36865	date:	2017-12-19T00:00:00
db:	VULHUB	id:	VHN-107676	date:	2018-01-12T00:00:00
db:	VULMON	id:	CVE-2017-16725	date:	2018-01-12T00:00:00
db:	BID	id:	102125	date:	2017-12-19T22:01:00
db:	JVNDB	id:	JVNDB-2017-011817	date:	2018-01-29T00:00:00
db:	CNNVD	id:	CNNVD-201712-359	date:	2017-12-12T00:00:00
db:	NVD	id:	CVE-2017-16725	date:	2025-04-20T01:37:25.860

SOURCES RELEASE DATE

db:	IVD	id:	e2df8100-39ab-11e9-aca3-000c29342cb1	date:	2017-12-12T00:00:00
db:	CNVD	id:	CNVD-2017-36865	date:	2017-12-12T00:00:00
db:	VULHUB	id:	VHN-107676	date:	2017-12-20T00:00:00
db:	VULMON	id:	CVE-2017-16725	date:	2017-12-20T00:00:00
db:	BID	id:	102125	date:	2017-12-07T00:00:00
db:	JVNDB	id:	JVNDB-2017-011817	date:	2018-01-29T00:00:00
db:	CNNVD	id:	CNNVD-201712-359	date:	2017-12-12T00:00:00
db:	NVD	id:	CVE-2017-16725	date:	2017-12-20T19:29:00.257