RSS   Vulnerabilities for 'Network camera fd8164 firmware'   RSS

2017-06-23
 
CVE-2017-9829

 

 
'/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera's Linux filesystem via a crafted HTTP request containing ".." sequences. This vulnerability is already verified on VIVOTEK Network Camera IB8369/FD8164/FD816BA; most others have similar firmware that may be affected.

 
 
CVE-2017-9828

CWE-78
 

 
'/cgi-bin/admin/testserver.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable to shell command injection, which allows remote attackers to execute any shell command as root via a crafted HTTP request. This vulnerability is already verified on VIVOTEK Network Camera IB8369/FD8164/FD816BA; most others have similar firmware that may be affected. An attack uses shell metacharacters in the senderemail parameter.

 

 >>> Vendor: Vivotek 7 Products
Mjpegcontrol
Rtsp mpeg4 sp control
Network camera fd816ba firmware
Network camera ib8369 firmware
Network camera fd8164 firmware
Camera
Fd8136 firmware


Copyright 2019, cxsecurity.com

 

Back to Top