Got 15 minutes to kill? Why not root your Christmas gift?

By Tao Sauvage

TP-LINK
NC200 and NC220 Cloud IP Cameras, which promise to let consumers “see there,
when you can’t be there,” are vulnerable to an OS command injection in the PPPoE
username and password settings. An attacker can leverage this weakness to get a
remote shell with root privileges.

The
cameras are being marketed for surveillance, baby monitoring, pet monitoring,
and monitoring