Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2013-1604

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2013-1604
Last Modified 26 Mar 2014 09:53:19
Published 25 Mar 2014 02:21:16
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2013-1604

Summary

Directory traversal vulnerability in MayGion IP Cameras with firmware before 2013.04.22 (05.53) allows remote attackers to read arbitrary files via a .. (dot dot) in the default URI.

Vulnerable Systems

Operating System

  • Maygion Ip Camera Firmware 05.49

  • Maygion Ip Camera Firmware 05.53

  • Maygion Ip Camera Firmware 05.59

  • Maygion Ip Camera Firmware 05.60

  • Maygion Ip Camera Firmware 09.27

  • Maygion Ip Camera Firmware 6.0

  • Maygion Ip Camera Firmware 6.1

  • Maygion Ip Camera Firmware 6.2


References

XF - maygion-ipcamera-cve20131604-dir-traversal(84589)

BID - 60192

EXPLOIT-DB - 25813

MISC - http://www.coresecurity.com/advisories/maygion-IP-cameras-multiple-vulnerabilities

FULLDISC - 20130528 CORE-2013-0322 - MayGion IP Cameras multiple vulnerabilities


Last Updated: 27 May 2016 11:04:46