7637 matches found
Authentication flaw
The web-based administration interface on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to bypass authentication via a // slash slash at the beginning of a URI, as demonstrated by the //system.html URI...
Default credentials
The Linux installation on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 has a default password of m for the root account, and a default password of merlin for the mg3500 account, which makes it easier for remote attackers to obtain access...
CVE-2010-4231
CVE-2010-4231 affects Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera (firmware 1.102A-008). The web server is vulnerable to a directory traversal via the URI containing multiple dots (..), allowing an attacker to read arbitrary files on the camera’s filesystem. Exploit...
CVE-2010-4230
Stack-based buffer overflow in a certain ActiveX control for the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to execute arbitrary code via a long string in the first argument to the connect method...
CVE-2010-4230
The CVE-2010-4230 issue affects the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera (firmware 1.102A-008) via a stack-based buffer overflow in an installable ActiveX control. The vulnerability lies in the first argument to the connect method of the ActiveX object (CLSID...
CVE-2010-4234
The CVE-2010-4234 entry concerns the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera (firmware 1.102A-008) with a vulnerable built-in web server. An attacker can trigger a denial-of-service by issuing a large number of requests in a short interval, causing the device to...
CVE-2010-4232
The CVE-2010-4232 vulnerability affects Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera (firmware 1.102A-008). The web-based admin interface allows authentication bypass by using a URI starting with // (e.g., //system.html), enabling an attacker to take full control of ...
CVE-2010-4233
The Linux installation on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 has a default password of m for the root account, and a default password of merlin for the mg3500 account, which makes it easier for remote attackers to obtain access...
CVE-2010-4233
CVE-2010-4233 affects Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera (firmware 1.102A-008). The issue is undocumented default credentials on the Linux OS: root with password m and mg3500 with password merlin , enabling login via the camera’s TELNET interface. Several c...
Camtron CMNC-200 IP Camera Denial of Service
Exploit for hardware platform in category dos / poc ============================================ Camtron CMNC-200 IP Camera Denial of Service ============================================ The CMNC-200 IP Camera has a built-in web server that is vulnerable to denial of service attacks. Sending...
Camtron CMNC-200 IP Camera Directory Traversal Vulnerability
Exploit for hardware platform in category remote exploits ============================================================ Camtron CMNC-200 IP Camera Directory Traversal Vulnerability ============================================================ The CMNC-200 IP Camera has a built-in web server that is...
Camtron CMNC-200 IP Camera Undocumented Default Accounts
Exploit for hardware platform in category web applications ======================================================== Camtron CMNC-200 IP Camera Undocumented Default Accounts ======================================================== The CMNC-200 IP Camera has undocumented default accounts on its Lin...
Camtron CMNC-200 IP Camera Authentication Bypass
Exploit for hardware platform in category web applications ================================================ Camtron CMNC-200 IP Camera Authentication Bypass ================================================ The CMNC-200 IP Camera has an administrative web interface that does not handle...
Camtron CMNC-200 IP Camera ActiveX Buffer Overflow Vulnerability
Exploit for hardware platform in category dos / poc ================================================================ Camtron CMNC-200 IP Camera ActiveX Buffer Overflow Vulnerability ================================================================ The CMNC-200 IP Camera ActiveX control identified ...
Camtron CMNC-200 IP Camera - Authentication Bypass
Camtron CMNC-200 IP Camera - Authentication Bypass Finding 3: Web Based Administration Interface Bypass CVE: CVE-2010-4232 The CMNC-200 IP Camera has an administrative web interface that does not handle authentication properly. Using a properly formatted request, an attacker can bypass the...
Camtron CMNC-200 IP Camera - ActiveX Buffer Overflow
Camtron CMNC-200 IP Camera - ActiveX Buffer Overflow Finding 1: Buffer Overflow in ActiveX Control CVE: CVE-2010-4230 The CMNC-200 IP Camera ActiveX control identified by CLSID DD01C8CA-5DA0-4B01-9603-B7194E561D32 is vulnerable to a stack overflow on the first argument of the connect method. The...
Camtron CMNC-200 IP Camera - Directory Traversal
Camtron CMNC-200 IP Camera - Directory Traversal Finding 2: Directory Traversal in Camera Web Server CVE: CVE-2010-4231 The CMNC-200 IP Camera has a built-in web server that is enabled by default. The server is vulnerable to directory transversal attacks, allowing access to any file on the camera...
Camtron CMNC-200 IP Camera - Denial of Service
Camtron CMNC-200 IP Camera - Denial of Service Finding 5: Camera Denial of Service CVE: CVE-2010-4234 The CMNC-200 IP Camera has a built-in web server that is vulnerable to denial of service attacks. Sending multiple requests in parallel to the web server may cause the camera to reboot. Requests...
Camtron CMNC-200 IP Camera - Denial of Service
Finding 5: Camera Denial of Service CVE: CVE-2010-4234 The CMNC-200 IP Camera has a built-in web server that is vulnerable to denial of service attacks. Sending multiple requests in parallel to the web server may cause the camera to reboot. Requests with long cookie header makes the IP camera...
Camtron CMNC-200 IP Camera - ActiveX Buffer Overflow
Finding 1: Buffer Overflow in ActiveX Control CVE: CVE-2010-4230 The CMNC-200 IP Camera ActiveX control identified by CLSID DD01C8CA-5DA0-4B01-9603-B7194E561D32 is vulnerable to a stack overflow on the first argument of the connect method. The vulnerability can be used to set the EIP register,...