23 Jui 2017
CVE-2017-9829 - CVE Vulnerability
'/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera's Linux filesystem via a crafted HTTP request containing ".." sequences. This vulnerability is already verified on VIVOTEK Network Camera IB8369/FD8164/FD816BA; most others have similar firmware that may be affected. (CVSS:5.0) (Last Update:2017-07-05)
Vulnerability Details : '/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera's Linux filesystem via a crafted HTTP request containing ".." sequences. This vulnerability is already verified on VIVOTEK Network Camera IB8369/FD8164/FD816BA; most others have similar firmware that may be affected. Publish Date : 2017-06-23 Last Update Date : 2017-07-05 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2017-9829
- Number Of Affected Versions By Product
- References For CVE-2017-9829
- Vulnerability Conditions
| |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2017-9829There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |