Remote code execution (RCE) vulnerability has been confirmed to exist in PHP code used by the Samsung SNH-1011 SmartCam to update its iWatch video monitoring application. Samsung shut down direct web access access to the cameras as a result. Samsung says that it will address the issue in an upcoming firmware update. But researchers claim that Samsungs fix isnt really a proper fix at all, saying that the company has left vulnerable scripts on users SmartCams which can still be accessed by hackers to take remote control of the devices.”]