PT-2007-3997 · Canon · Canon Network Camera Server Vb100+2

Publicado

2007-05-15

Atualizado

2011-03-08

CVE-2007-2680

CVSS v2.0

4.3

Média

Vetor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Canon Network Camera Server VB100 versions 3.0 R69 and earlier Canon Network Camera Server VB101 versions 3.0 R69 and earlier Canon Network Camera Server VB150 versions 1.1 R39 and earlier

Description A cross-site scripting (XSS) issue exists in the management interface, allowing remote attackers to inject arbitrary web script or HTML. This could potentially lead to unauthorized access or control of the camera server.

Recommendations For Canon Network Camera Server VB100 versions 3.0 R69 and earlier, update to a version later than 3.0 R69. For Canon Network Camera Server VB101 versions 3.0 R69 and earlier, update to a version later than 3.0 R69. For Canon Network Camera Server VB150 versions 1.1 R39 and earlier, update to a version later than 1.1 R39.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-2680

Produtos afetados

Canon Network Camera Server Vb100

Canon Network Camera Server Vb101

Canon Network Camera Server Vb150

PT-2007-3997 · Canon · Canon Network Camera Server Vb100+2

CVE-2007-2680

Identificadores relacionados

Produtos afetados

Referências · 7