Computer Security
[EN] securityvulns.ru no-pyccku


Foscam cameras security vulnerabilities
updated since 11.03.2013
Published:29.07.2013
Source:
SecurityVulns ID:12941
Type:remote
Threat Level:
5/10
Description:Directory traversal, CSRF.
CVE:CVE-2013-2574
 CVE-2013-2560 (Directory traversal vulnerability in the web interface on Foscam devices with firmware before 11.37.2.49 allows remote attackers to read arbitrary files via a .. (dot dot) in the URI, as demonstrated by discovering (1) web credentials or (2) Wi-Fi credentials.)
Original documentdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, CORE-2013-0613 - FOSCAM IP-Cameras Improper Access Restrictions (29.07.2013)
 documentshekyan_(at)_gmail.com, [CVE-REQUEST] Multiple CSRF vulnerabilities on Foscam IP cameras web UI (15.04.2013)
 documentFrederic Basse, [CVE-REQUEST] Foscam <= 11.37.2.48 path traversal vulnerability (11.03.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod