Severity: Medium

Shenzhen Sricctv Technology DeviceViewer (DeviceViewer.exe) <= v.3.10.12.0 is affected by a local Stack Buffer Overflow. By creating a specially crafted “Username” and copying its value in the “User/mail” login field, an attacker will be able to gain arbitrary code execution in the context of the currently logged-in user.