Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2009-2046

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2009-2046
Last Modified 01 Jul 2009 11:31:39
Published 24 Jun 2009 09:30:01
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2009-2046

Summary

The embedded web server on the Cisco Video Surveillance 2500 Series IP Camera with firmware before 2.1 allows remote attackers to read arbitrary files via a (1) http or (2) https request, related to the (a) SD Camera Web Server and the (b) Wireless Camera HTTP Server, aka Bug IDs CSCsu05515 and CSCsr96497.

Vulnerable Systems


References

CISCO - 20090624 Vulnerabilities in Cisco Video Surveillance Products

SECTRACK - 1022445

BID - 35478

CONFIRM - http://www.cisco.com/en/US/products/products_applied_mitigation_bulletin09186a0080ad1002.html


Last Updated: 27 May 2016 10:50:45