Lucene search
K

7644 matches found

exploitpack
exploitpack
added 2009/07/01 12:0 a.m.14 views

ARD-9808 DVR Card Security Camera - Arbitrary Configuration Disclosure

ARD-9808 DVR Card Security Camera - Arbitrary Configuration Disclosure ------------------------------------------------- SoftWare Name : ARD-9808 DVR Card Security Camera Passwords View Bug ------------------------------------------------- Author : Septemb0x Web Site : www.ozkanbozkurt.com Procut...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2009/07/01 12:0 a.m.12 views

ARD-9808 DVR Card Security Camera - GET Remote Denial of Service

ARD-9808 DVR Card Security Camera - GET Remote Denial of Service import socket import sys print "----------------------------------------------------------------" print " ARD-9808 DVR Card Security Camera = Remote Denial Of Service " print " author: Stack " print...

0.7AI score
Exploits0
0day.today
0day.today
added 2009/07/01 12:0 a.m.22 views

ARD-9808 DVR Card Security Camera Arbitrary Config Disclosure Vuln

Exploit for hardware platform in category remote exploits ================================================================== ARD-9808 DVR Card Security Camera Arbitrary Config Disclosure Vuln ==================================================================...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2009/07/01 12:0 a.m.41 views

ARD-9808 DVR Card Security Camera - GET Remote Denial of Service

import socket import sys print "----------------------------------------------------------------" print " ARD-9808 DVR Card Security Camera = Remote Denial Of Service " print " author: Stack " print "----------------------------------------------------------------" host = "127.0.0.1" port = 80 tr...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/07/01 12:0 a.m.39 views

ARD-9808 DVR Card Security Camera - Arbitrary Configuration Disclosure

------------------------------------------------- SoftWare Name : ARD-9808 DVR Card Security Camera Passwords View Bug ------------------------------------------------- Author : Septemb0x Web Site : www.ozkanbozkurt.com Procuts Site :...

7.4AI score
Exploits0
NVD
NVD
added 2009/06/25 1:30 a.m.22 views

CVE-2009-2046

The embedded web server on the Cisco Video Surveillance 2500 Series IP Camera with firmware before 2.1 allows remote attackers to read arbitrary files via a 1 http or 2 https request, related to the a SD Camera Web Server and the b Wireless Camera HTTP Server, aka Bug IDs CSCsu05515 and CSCsr9649...

6.8CVSS6.9AI score0.0114EPSS
Exploits0References4
Prion
Prion
added 2009/06/25 1:30 a.m.18 views

Cross site request forgery (csrf)

The embedded web server on the Cisco Video Surveillance 2500 Series IP Camera with firmware before 2.1 allows remote attackers to read arbitrary files via a 1 http or 2 https request, related to the a SD Camera Web Server and the b Wireless Camera HTTP Server, aka Bug IDs CSCsu05515 and CSCsr9649...

6.8CVSS7.5AI score0.0114EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2009/06/24 10:0 p.m.48 views

CVE-2009-2046

CVE-2009-2046 affects Cisco Video Surveillance 2500 Series IP Camera firmware before 2.1. The embedded web server on the camera’s HTTP/HTTPS interfaces (SD Camera Web Server and Wireless Camera HTTP Server) allows remote access to read arbitrary files, exposing sensitive data. Root cause is an in...

6.8CVSS7.1AI score0.0114EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2009/05/06 4:30 p.m.19 views

CVE-2009-1555

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 sends configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by reading the SetupWizard.exe process memory, a...

5CVSS7.4AI score0.01324EPSS
Exploits1References4
Prion
Prion
added 2009/05/06 4:30 p.m.22 views

Directory traversal

Directory traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote attackers to read arbitrary files via a %2e. encoded dot dot or an absolute pathname in the nextfile parameter...

7.8CVSS7.3AI score0.28806EPSS
Exploits1References4Affected Software1
NVD
NVD
added 2009/05/06 4:30 p.m.16 views

CVE-2009-1556

img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the nextfile parameter, as demonstrated by reading .htpasswd to obtain the admin password, a different vulnerabili...

3.5CVSS6.2AI score0.00924EPSS
Exploits1References4
NVD
NVD
added 2009/05/06 4:30 p.m.20 views

CVE-2009-1557

Multiple cross-site scripting XSS vulnerabilities on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allow remote attackers to inject arbitrary web script or HTML via the nextfile parameter to 1 main.cgi, 2 img/main.cgi, or 3 adm/file.cgi; or 4 the thisfile...

4.3CVSS5.9AI score0.07469EPSS
Exploits1References5
NVD
NVD
added 2009/05/06 4:30 p.m.14 views

CVE-2009-1559

Absolute path traversal vulnerability in adm/file.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R24 and possibly 1.00R22 allows remote attackers to read arbitrary files via an absolute pathname in the thisfile parameter. NOTE: traversal via a .. dot dot is probably als...

7.8CVSS6.8AI score0.01532EPSS
Exploits1References4
NVD
NVD
added 2009/05/06 4:30 p.m.19 views

CVE-2009-1560

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 stores passwords and wireless-network keys in cleartext in 1 passwd.htm and 2 Wsecurity.htm, which allows remote attackers to obtain sensitive information by reading the HTML source code...

7.8CVSS6.2AI score0.01631EPSS
Exploits1References3
Prion
Prion
added 2009/05/06 4:30 p.m.15 views

Design/Logic Flaw

img/main.cgi on the Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 allows remote authenticated users to read arbitrary files in img/ via a filename in the nextfile parameter, as demonstrated by reading .htpasswd to obtain the admin password, a different vulnerabili...

3.5CVSS6.7AI score0.07739EPSS
Exploits2References4Affected Software1
Cvelist
Cvelist
added 2009/05/06 4:0 p.m.21 views

CVE-2009-1555

The Cisco Linksys WVC54GCA wireless video camera with firmware 1.00R22 and 1.00R24 sends configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by reading the SetupWizard.exe process memory, a...

7.4AI score0.01324EPSS
Exploits1References4
CVE
CVE
added 2009/05/06 4:0 p.m.41 views

CVE-2009-1555

The CVE-2009-1555 entry concerns the Cisco Linksys WVC54GCA wireless video camera. Affected firmware is 1.00R22 and 1.00R24. The issue arises when the device responds to a Setup Wizard remote-management command by exposing configuration data, enabling remote attackers to obtain sensitive informat...

5CVSS7.3AI score0.01324EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2009/05/06 4:0 p.m.88 views

CVE-2009-1558

Cisco Linksys WVC54GCA cameras with firmware 1.00R22/1.00R24 are vulnerable to local file inclusion in adm/file.cgi via the next_file parameter (using %2e or an absolute pathname). This allows reading arbitrary files on the device. The Nuclei template confirms a Local File Inclusion against the s...

7.8CVSS7AI score0.28806EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2009/05/06 4:0 p.m.43 views

CVE-2009-1559

The CVE-2009-1559 entry relates to an absolute path traversal vulnerability in the adm/file.cgi component of the Cisco Linksys WVC54GCA wireless video camera. Affected firmware is listed as 1.00R24 and possibly 1.00R22. The vulnerability allows remote attackers to read arbitrary files by supplyin...

7.8CVSS7.1AI score0.01532EPSS
Exploits1References4Affected Software1
CVE
CVE
added 2009/05/06 4:0 p.m.58 views

CVE-2009-1556

CVE-2009-1556 (Linksys WVC54GCA) affects Cisco Linksys WVC54GCA wireless video camera firmware 1.00R22 and 1.00R24. The flaw is in the img/main.cgi component, where an attacker with remote authentication can read arbitrary files from the img/ directory by supplying a filename in the next_file par...

3.5CVSS6.4AI score0.00924EPSS
Exploits1References4Affected Software1
Rows per page
Query Builder