2 matches found
CVE-2019-3934
Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 allows anyone to bypass the presentation code sending a crafted HTTP POST request to login.cgi. A remote, unauthenticated attacker can use this vulnerability to download the current slide image without knowing the access code...
CVE-2019-3934
CVE-2019-3934 affects Crestron AM-100 (firmware 1.6.0.2) and AM-101 (firmware 2.7.0.2). A crafted HTTP POST to login.cgi bypasses the presentation code, enabling a remote, unauthenticated attacker to download the current slide image without the access code. The available sources describe the affe...