OvisLink AirLive IP Cameras WL-2000CAM and Airlive IP Cameras POE-200CAM Operating System Command Injection Vulnerability

OvisLink Airlive IP Cameras WL-2000CAM and Airlive IP Cameras POE-200CAM are both network camera products from OvisLink. An operating system command injection vulnerability exists in the /cgi-bin/mft/wirelessmft.cgi binary file in the OvisLink AirLive IP Cameras WL-2000CAM and Airlive IP Cameras...

AirLive 系列 IP 摄像头命令注入漏洞

大量AirLive IP监控摄像机被曝存在命令注入漏洞，攻击者可利用该漏洞窃取用户登录凭证并控制设备。漏洞原理及影响范围OvisLink公司制造的大量AirLive IP监控摄像机中都存在着命令注入漏洞，通过该漏洞，网络攻击者可以解码用户登录凭证，并可以完全控制监控设备。根据Core安全公司的专家们的消息，至少5种不同型号的AirLive监控摄像机都受此漏洞的影响。这5种型号的监控摄像机分别如下：1、AirLive BU-2015，固件版本1.03.18 16.06.20142、AirLive BU-3026，固件版本1.43 21.08.20143、AirLive...

Command Vulnerabilities Plague IP Enabled AirLive Cameras

A handful of IP-enabled cameras are susceptible to command injection vulnerabilities that could let attackers decode user credentials and gain complete access to the devices. At least five different types of AirLive cameras, manufactured by OvisLink Corp., an IP surveillance networking solutions...