RSS   Vulnerabilities for 'Dvr4-securanet'   RSS

2009-02-18
 
CVE-2009-0644

CWE-255
 

 
The HTTP interface in Swann DVR4-SecuraNet has a certain default administrative username and password, which makes it easier for remote attackers to obtain privileged access.

 
2009-02-20
 
CVE-2009-0640

CWE-22
 

 
Directory traversal vulnerability in the administrative web server in Swann DVR4-SecuraNet allows remote attackers to read arbitrary files via a .. (dot dot) in the URI, as demonstrated by reading the vy_netman.cfg file that contains passwords.

 


Copyright 2024, cxsecurity.com

 

Back to Top