22 matches found
EUVD-2013-1631
Malware in sbrugna...
CVE-2013-1598
A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code...
Directory traversal
A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials...
Command injection
A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code...
CVE-2013-1598
Vivotek PT7135 IP cameras with firmware 0300a and 0400a are affected by CVE-2013-1598, an OS command injection in the binary farseer.out via the system.ntp parameter that lets an attacker execute arbitrary commands. The vulnerability spans pre-auth (0300a) and post-auth (0400a) access in the admi...
CVE-2013-1598
A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code...
CVE-2013-1596
An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554...
CVE-2013-1595
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...
Buffer overflow
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...
Authentication flaw
An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554...
CVE-2013-1597
A Directory Traversal vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via a specially crafted GET request, which could let a malicious user obtain user credentials...
CVE-2013-1596
CVE-2013-1596 is an RTSP authentication bypass affecting Vivotek PT7135 IP Camera firmware 0300a and 0400a, exploitable via specially crafted RTSP packets sent to TCP port 554, enabling an unauthenticated remote attacker to access the video stream. The Core Security CoreLabs advisory and related ...
CVE-2013-1596
An Authentication Bypass Vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via specially crafted RTSP packets to TCP port 554...
Information disclosure
An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text...
CVE-2013-1595
A Buffer Overflow vulnerability exists in Vivotek PT7135 IP Camera 0300a and 0400a via a specially crafted packet in the Authorization header field sent to the RTSP service, which could let a remote malicious user execute arbitrary code or cause a Denial of Service...
CVE-2013-1595
CVE-2013-1595 is a remote buffer overflow in Vivotek PT7135 IP Camera firmware 0300a/0400a. Exploitation requires sending a crafted RTSP packet with an inflated Authorization header to the RTSP service (port 554), which can overwrite the instruction pointer and allow remote code execution or caus...
CVE-2013-1594
Vivotek PT7135 IP cameras with firmware 0300a/0400a are affected by CVE-2013-1594 and related vulnerabilities involving information leakage via GET requests. CoreLabs describes that wireless keys and third‑party credentials are stored in clear text (FTP, share, SMTP, WEP/WPA keys, DynDNS, etc.), ...
CVE-2013-1594
An Information Disclosure vulnerability exists via a GET request in Vivotek PT7135 IP Camera 0300a and 0400a due to wireless keys and 3rd party credentials stored in clear text...
Vivotek IP Cameras Multiple Vulnerabilities
Core Security - Corelabs Advisory http://corelabs.coresecurity.com Vivotek IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: Vivotek IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0301 Advisory URL:...
Vivotek IP Cameras - Multiple Vulnerabilities
Vivotek IP Cameras - Multiple Vulnerabilities Core Security - Corelabs Advisory http://corelabs.coresecurity.com Vivotek IP Cameras Multiple Vulnerabilities 1. Advisory Information Title: Vivotek IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0301 Advisory URL:...