Web-Based Client on Local Host Didn’t Sanitize Inputs. Video camera surveillance management software made by South Korean manufacturer Idis is susceptible to a one-click attack giving hackers the power to execute arbitrary code. The vulnerability allows an attacker to escalate beyond the browser sandbox and achieve code execution on the host.
First seen on govinfosecurity.com
Jump to article: www.govinfosecurity.com/idis-surveillance-management-software-vulnerable-to-hacking-a-30616
