Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

Test ID:1.3.6.1.4.1.25623.1.0.103721
Category:Web application abuses
Title:Zavio IP Cameras Multiple Vulnerabilities
Summary:Zavio IP Cameras are prone to multiple vulnerabilities.
Description:Summary:
Zavio IP Cameras are prone to multiple vulnerabilities.

Vulnerability Insight:
The following flaws exist:

1. [CVE-2013-2567] to bypass user web interface authentication using hard-coded credentials.

2. [CVE-2013-2568] to execute arbitrary commands from the administration web interface. This
flaw can also be used to obtain all credentials of registered users.

3. [CVE-2013-2569] to access the camera video stream.

4. [CVE-2013-2570] to execute arbitrary commands from the administration web
interface (post authentication only).

Affected Software/OS:
Zavio IP Cameras running firmware version 1.6.03 and below are
vulnerable.

Solution:
Update firmware.

CVSS Score:
10.0

CVSS Vector:
AV:N/AC:L/Au:N/C:C/I:C/A:C

Cross-Ref: BugTraq ID: 60189
BugTraq ID: 60191
BugTraq ID: 60190
BugTraq ID: 60188
Common Vulnerability Exposure (CVE) ID: CVE-2013-2567
http://www.coresecurity.com/advisories/zavio-IP-cameras-multiple-vulnerabilities
http://www.exploit-db.com/exploits/25815
http://www.securityfocus.com/bid/60189
https://exchange.xforce.ibmcloud.com/vulnerabilities/84568
https://packetstormsecurity.com/files/cve/CVE-2013-2567
Common Vulnerability Exposure (CVE) ID: CVE-2013-2569
http://www.securityfocus.com/bid/60191
https://exchange.xforce.ibmcloud.com/vulnerabilities/84570
https://packetstormsecurity.com/files/cve/CVE-2013-2569
https://www.coresecurity.com/advisories/zavio-ip-cameras-multiple-vulnerabilities
Common Vulnerability Exposure (CVE) ID: CVE-2013-2568
http://www.securityfocus.com/bid/60190
https://exchange.xforce.ibmcloud.com/vulnerabilities/84569
https://packetstormsecurity.com/files/cve/CVE-2013-2568/page1/
https://vulmon.com/vulnerabilitydetails?qid=CVE-2013-2568
Common Vulnerability Exposure (CVE) ID: CVE-2013-2570
http://www.securityfocus.com/bid/60188
https://exchange.xforce.ibmcloud.com/vulnerabilities/84567
https://packetstormsecurity.com/files/cve/CVE-2013-2570
CopyrightCopyright (C) 2013 Greenbone Networks GmbH

This is only one of 99761 vulnerability tests in our test suite. Find out more about running a complete security audit.

To run a free test of this vulnerability against your system, register below.




© 1998-2024 E-Soft Inc. All rights reserved.