CVE-2014-8384

2015-05-18T15:59:00
ID CVE-2014-8384
Type cve
Reporter cve@mitre.org
Modified 2015-05-19T16:31:00

Description

The InFocus IN3128HD projector with firmware 0.26 does not restrict access to cgi-bin/webctrl.cgi.elf, which allows remote attackers to modify the DHCP server and device IP configuration, reboot the device, change the device name, and have other unspecified impact via a crafted request. <a href="http://cwe.mitre.org/data/definitions/306.html">Missing Authentication for Critical Function</a>