25 matches found
EUVD-2013-1631
Malware in sbrugna...
CVE-2013-1597
A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials...
CVE-2013-1598
A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code...
Command injection
A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code...
Directory traversal
A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials...
CVE-2013-1598
A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code...
CVE-2013-1598
Vivotek PT7135 IP cameras with firmware 0300a and 0400a are affected by CVE-2013-1598, an OS command injection in the binary farseer.out via the system.ntp parameter that lets an attacker execute arbitrary commands. The vulnerability spans pre-auth (0300a) and post-auth (0400a) access in the admi...
CVE-2013-1596
An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554...
CVE-2013-1595
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...
Buffer overflow
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...
Authentication flaw
An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554...
CVE-2013-1597
A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials...
CVE-2013-1597
CVE-2013-1597 is a path-traversal vulnerability in Vivotek PT7135 IP Cameras (firmware 0300a and 0400a) allowing an attacker to dump memory and extract user credentials. The CoreLabs advisory and related references describe exploit chains that can retrieve credentials from /../../../../../../../....
CVE-2013-1596
An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554...
CVE-2013-1596
CVE-2013-1596 is an RTSP authentication bypass affecting Vivotek PT7135 IP Camera firmware 0300a and 0400a, exploitable via specially crafted RTSP packets sent to TCP port 554, enabling an unauthenticated remote attacker to access the video stream. The Core Security CoreLabs advisory and related ...
CVE-2013-1594
An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text...
Information disclosure
An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text...
CVE-2013-1595
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...
CVE-2013-1595
CVE-2013-1595 is a remote buffer overflow in Vivotek PT7135 IP Camera firmware 0300a/0400a. Exploitation requires sending a crafted RTSP packet with an inflated Authorization header to the RTSP service (port 554), which can overwrite the instruction pointer and allow remote code execution or caus...
CVE-2013-1594
An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text...