Lucene search
PRIOn knowledge basePRION:CVE-2013-5754HistorySep 17, 2013 - 12:04 p.m.
Authorization
2013-09-1712:04:00
PRIOn knowledge base
www.prio-n.com
6
The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain administrative access and change the administrator password via requests involving (1) ActiveX, (2) a standalone client, or (3) unspecified other vectors, a different vulnerability than CVE-2013-3612.
References
Related
cvelist
cvelist
CVE-2013-5754
2022-10-03 16:14:54
CVE-2013-3612
2022-10-03 16:14:46
cve
cve
CVE-2013-5754
2022-10-03 16:14:54
CVE-2013-3612
2022-10-03 16:14:46
nvd
nvd
CVE-2013-5754
2013-09-17 12:04:28
CVE-2013-3612
2013-09-17 12:04:24
prion
prion
Hardcoded credentials
2013-09-17 12:04:00
cert
cert
Dahua Security DVRs contain multiple vulnerabilities
2013-09-13 00:00:00
securityvulns
securityvulns
Dahua DVR Authentication Bypass - CVE-2013-6117
2013-11-18 00:00:00
Dahua DVR authentication bypass
2013-11-18 00:00:00
seebug
seebug
Dahua DVR 2.608.0000.0 and 2.608.GV00.0 - Authentication Bypass
2014-07-01 00:00:00
exploitpack
exploitpack
Dahua DVR 2.608.0000.02.608.GV00.0 - Authentication Bypass (Metasploit)
2013-11-18 00:00:00
exploitdb
exploitdb
Dahua DVR 2.608.0000.0/2.608.GV00.0 - Authentication Bypass (Metasploit)
2013-11-18 00:00:00