Computer Security
[EN] securityvulns.ru no-pyccku


InFocus projectors authentication bypass
Published:11.05.2015
Source:
SecurityVulns ID:14458
Type:remote
Threat Level:
5/10
Description:Few authentication bypass possibilities.
Affected:INFOCUS : InFocus IN3128HD
CVE:CVE-2014-8384 (The InFocus IN3128HD projector with firmware 0.26 does not restrict access to cgi-bin/webctrl.cgi.elf, which allows remote attackers to modify the DHCP server and device IP configuration, reboot the device, change the device name, and have other unspecified impact via a crafted request.)
 CVE-2014-8383 (The InFocus IN3128HD projector with firmware 0.26 allows remote attackers to bypass authentication via a direct request to main.html.)
Original documentdocumentCORE SECURITY TECHNOLOGIES ADVISORIES, [CORE-2015-0008] - InFocus IN3128HD Projector Multiple Vulnerabilities (11.05.2015)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod