31 matches found
EUVD-2019-5856
Malware in sbrugna...
EUVD-2019-5851
Malware in sbrugna...
EUVD-2019-5852
Malware in sbrugna...
EUVD-2019-5853
Malware in sbrugna...
EUVD-2019-5859
Malware in sbrugna...
EUVD-2019-5848
Malware in sbrugna...
EUVD-2019-5850
Malware in sbrugna...
EUVD-2019-5849
Malware in sbrugna...
EUVD-2019-5855
Malware in sbrugna...
EUVD-2019-5858
Malware in sbrugna...
CVE-2019-14709
A cleartext password storage issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. The file in question is /usr/local/ipsca/mipsca.db. If a camera is compromised, the attacker can gain access to passwords and abuse them to compromise further systems...
CVE-2019-14706
A denial of service issue in HTTPD was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker without authorization can upload a file to upload.php with a filename longer than 256 bytes. This will be placed in the updownload area. It will not be deleted, because...
CVE-2019-14699
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can exploit OS Command Injection in the filename parameter for remote code execution as root. This occurs in the Mainproc executable file, which can be run from the HTTPD web server...
CVE-2019-14703
A CSRF issue was discovered in webparam?user=set=add in HTTPD on MicroDigital N-series cameras with firmware through 6400.0.8.5 to create an admin account...
CVE-2019-14698
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. In a CGI program running under the HTTPD web server, a buffer overflow in the param parameter leads to remote code execution in the context of the nobody account...
MicroDigital N-series cameras SQL Injection Vulnerability
MicroDigital N-series cameras is an N-series network camera from MicroDigital Korea. A SQL injection vulnerability exists in MicroDigital N-series cameras. An attacker can exploit this vulnerability to execute illegal SQL commands...
MicroDigital N-series cameras cross-site request forgery vulnerability
MicroDigital N-series cameras is an N-series network camera from MicroDigital Korea. A cross-site request forgery vulnerability exists in MicroDigital N-series cameras. An attacker could use this vulnerability to send unintended requests to the server via an affected client...
CVE-2019-14699
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. An attacker can exploit OS Command Injection in the filename parameter for remote code execution as root. This occurs in the Mainproc executable file, which can be run from the HTTPD web server...
CVE-2019-14700
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. There is disclosure of the existence of arbitrary files via Path Traversal in HTTPD. This occurs because the filename specified in the TZ parameter is accessed with a substantial delay if that file exists...
CVE-2019-14702
An issue was discovered on MicroDigital N-series cameras with firmware through 6400.0.8.5. SQL injection vulnerabilities exist in 13 forms that are reachable through HTTPD. An attacker can, for example, create an admin account...