Test ID:	1.3.6.1.4.1.25623.1.0.105318
Category:	Web application abuses
Title:	AirLink101 SkyIPCam1620W OS Command Injection
Summary:	The SkyIPCam1620W Wireless N MPEG4 3GPP Network Camera is vulnerable; to an OS Command Injection Vulnerability in the snwrite.cgi binary.
Description:	Summary: The SkyIPCam1620W Wireless N MPEG4 3GPP Network Camera is vulnerable to an OS Command Injection Vulnerability in the snwrite.cgi binary. Affected Software/OS: AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP Network Camera with firmware FW_AIC1620W_1.1.0-12_20120709_r1192.pck (Aug. 2012). Other devices based on the same firmware are probably affected too. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-2280 BugTraq ID: 75597 http://www.securityfocus.com/bid/75597 Bugtraq: 20150708 [CORE-2015-0011] - AirLink101 SkyIPCam1620W OS Command Injection (Google Search) http://www.securityfocus.com/archive/1/535963/100/0/threaded https://www.exploit-db.com/exploits/37527/ http://seclists.org/fulldisclosure/2015/Jul/40 http://packetstormsecurity.com/files/132609/AirLink101-SkyIPCam1620W-OS-Command-Injection.html https://www.coresecurity.com/advisories/airlink101-skyipcam1620w-os-command-injection
Copyright	Copyright (C) 2015 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.