Zavio IP Camera Firmware 1603 OS Command Injection - Ver2 (CVE-2013-2570)
A command injection vulnerability has been reported in Zavio F3105 and F312A IP cameras. The vulnerability is due to an input passed via the 'General.Time.NTP.Server' function, when parameter is not properly sanitized upon submission to the subC8C8 function in /opt/cgi/view/param. Successful...