10 matches found
EUVD-2013-3520
Malware in sbrugna...
CVE-2013-3585
Samsung Web Viewer for Samsung DVR devices stores credentials in cleartext, which allows context-dependent attackers to obtain sensitive information via vectors involving 1 direct access to a file or 2 the user-setup web page...
CVE-2013-3586
Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie...
Samsung Web Viewer DVR Remote Detection
Detects the installation of Samsung Web Viewer DVR. This script sends an HTTP GET request and tries to ensure the presence of Samsung Web Viewer DVR. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respectiv...
Samsung Web Viewer DVR Default Credentials (HTTP)
The remote installation of Samsung Web Viewer DVR is using known and default credentials for the web interface. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders...
Samsung Web Viewer for Samsung DVR Cross-Site Scripting Vulnerability
Samsung smart Viewer is a TV connectivity software from Samsung. A cross-site scripting vulnerability in Samsung Web Viewer for Samsung DVR allows remote attackers to inject arbitrary web script or HTML using the vulnerability...
Samsung SRN Device Detection
Detection of Samsung Web Viewer. Samsung Web Viewer is normally part of Samsung SRN devices. The script sends a connection request to the server and attempts to detect Samsung Web Viewer and to extract its version. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpte...
CVE-2017-16524
Web Viewer 1.0.0.193 on Samsung SRN-1670D devices suffers from an Unrestricted file upload vulnerability: 'networksslupload.php' allows remote authenticated attackers to upload and execute arbitrary PHP code via a filename with a .php extension, which is then accessed via a direct request to the...
Authentication flaw
Samsung Web Viewer for Samsung DVR devices allows remote attackers to bypass authentication via an arbitrary SessionID value in a cookie...
Samsung Web Viewer for Samsung DVR allows authentication bypass and password disclosure
Overview Samsung Web Viewer for Samsung DVR contains multiple vulnerabilities including: Cleartext Storage in a File or on Disk CWE-313 and Authentication Bypass by Assumed-Immutable Data CWE-302. Description CWE-313: Cleartext Storage in a File or on Disk - CVE-2013-3585Web Viewer for Samsung DV...