CVE-2013-4739

The MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allows attackers to obtain sensitive information from kernel stack memory via 1 a crafted MSMMCRIOCTLEVTGET ioctl call, related to...

CVE-2013-4738

Multiple stack-based buffer overflows in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allow attackers to gain privileges via 1 a crafted VIDIOCMSMVPEDEQUEUESTREAMBUFFINFO ioctl call, related to...

[ExifTool] Read, Writing Meta Information Tools

ExifTool is a platform-independent Perl library plus a command-line application for reading, writing and editing meta information in a wide variety of files. ExifTool supports many different metadata formats including EXIF, GPS, IPTC, XMP, JFIF, GeoTIFF, ICC Profile, Photoshop IRB, FlashPix, AFCP...

Stem Innovation IZON Hardcoded Password Vulnerability

Stem Innovation's IZON IP camera has hard-coded passwords that can be leveraged via both telnetd and httpd. Stem Innovation ‘IZON’ Hard-coded Credentials CVE-2013-6236 Mark Stanislav - email protected I. DESCRIPTION --------------------------------------- Stem Innovation's IP camera called ‘IZON’...

CVE-2013-7204

Cross-site request forgery CSRF vulnerability in setusers.cgi in Conceptronic CIPCAMPTIWL Camera 1.0 with firmware 21.37.2.49 allows remote attackers to hijack the authentication of administrators for requests that add arbitrary users...

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in setusers.cgi in Conceptronic CIPCAMPTIWL Camera 1.0 with firmware 21.37.2.49 allows remote attackers to hijack the authentication of administrators for requests that add arbitrary users...

CVE-2013-7204

Cross-site request forgery CSRF vulnerability in setusers.cgi in Conceptronic CIPCAMPTIWL Camera 1.0 with firmware 21.37.2.49 allows remote attackers to hijack the authentication of administrators for requests that add arbitrary users...

CVE-2013-7204

Conceptronic CIPCAMPTIWL network camera (Firmware 21.37.2.49, Web UI 0.61.4.18) is affected by CVE-2013-7204: a Cross-Site Request Forgery in /set_users.cgi that lets an attacker cause an administrator to create/add new users, potentially hijacking admin access. Affected component is the CGI form...

Stem Innovation IZON Hardcoded Password

Stem Innovation ‘IZON’ Hard-coded Credentials CVE-2013-6236 Mark Stanislav - [email protected] I. DESCRIPTION --------------------------------------- Stem Innovation's IP camera called ‘IZON’ utilizes numerous hard-coded credentials within its Linux distribution and also the hidden web...

CVE-2013-6123

Multiple array index errors in drivers/media/video/msm/server/msmcamserver.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node...

CVE-2013-6123

Multiple array index errors in drivers/media/video/msm/server/msmcamserver.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node...

Code injection

Multiple array index errors in drivers/media/video/msm/server/msmcamserver.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node...

UBUNTU-CVE-2013-6123

Multiple array index errors in drivers/media/video/msm/server/msmcamserver.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node...

CVE-2013-6123

CVE-2013-6123 affects the MSM camera driver in the Linux kernel 3.x (MSM CAM server). The root cause is multiple array index errors in msm_cam_server.c, related to handling of camera device-node input, involving the functions msm_ctrl_cmd_done , msm_ioctl_server , and msm_server_send_ctrl . This ...

CVE-2013-6123

Multiple array index errors in drivers/media/video/msm/server/msmcamserver.c in the MSM camera driver for the Linux kernel 3.x, as used in Qualcomm Innovation Center QuIC Android contributions for MSM devices and other products, allow attackers to gain privileges by leveraging camera device-node...

Conceptronic Wireless Pan & Tilt Network Camera - CSRF Vulnerability

Exploit for hardware platform in category web applications Affected Product: Conceptronic camera CIPCAMPTIWL Tested Firmware: 21.37.2.49 Tested Web UI Firmware: 0.61.4.18 Assigned CVE: CVE-2013-7204 CVSSv2 Base Score: 5.8 AV:N/AC:M/AU:N/C:P/I:P/A:N Vulnerability Type: Cross-Site Request Forgery...

Conceptronic Wireless Pan & Tilt Network Camera - Cross-Site Request Forgery

General Details Affected Product: Conceptronic camera CIPCAMPTIWL Tested Firmware: 21.37.2.49 Tested Web UI Firmware: 0.61.4.18 Assigned CVE: CVE-2013-7204 CVSSv2 Base Score: 5.8 AV:N/AC:M/AU:N/C:P/I:P/A:N Vulnerability Type: Cross-Site Request Forgery CWE-352 Solution Status: Not Fixed Vendor...

Conceptronic Wireless Pan Tilt Network Camera - Cross-Site Request Forgery

Conceptronic Wireless Pan Tilt Network Camera - Cross-Site Request Forgery General Details Affected Product: Conceptronic camera CIPCAMPTIWL Tested Firmware: 21.37.2.49 Tested Web UI Firmware: 0.61.4.18 Assigned CVE: CVE-2013-7204 CVSSv2 Base Score: 5.8 AV:N/AC:M/AU:N/C:P/I:P/A:N Vulnerability...

Qualcomm out of bounds camera

Out of bounds array access in camera driver CVE-2013-6123: The camera driver provides an ioctl system call interface to user space clients for communication. When processing this communication, the msmioctlserver, msmserversendctrl, and msmctrlcmddone functions use a user-supplied value as an ind...

DROPOUTJEEP: NSA's Secret program to access any Apple iPhone, including microphone & camera

In the era of Smartphones, Apple’s iPhone is the most popular device that exists, which itself gives the reason to target it. According to leaked documents shared by Security researcher Jacob Appelbaum, a secret NSA program code named DROPOUTJEEP has nearly total access to the Apple’s iPhones,...