PT-2009-4049 · Cisco · Linksys Wvc54Gca
Pagvac
·
Publicado
2009-05-06
·
Atualizado
2009-05-23
·
CVE-2009-1555
CVSS v2.0
5.0
Média
| Vetor | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions:
Cisco Linksys WVC54GCA wireless video camera version 1.00R22
Cisco Linksys WVC54GCA wireless video camera version 1.00R24
Description:
The issue allows remote attackers to obtain sensitive information, such as passwords, by reading the process memory of the SetupWizard.exe. This is related to the way the camera sends configuration data in response to a remote-management command from the Setup Wizard.
Recommendations:
For version 1.00R22, update the firmware to a version that addresses this issue.
For version 1.00R24, update the firmware to a version that addresses this issue.
As a temporary workaround, consider restricting access to the Setup Wizard remote-management command until a patch is available.
Exploit
Correção
Information Disclosure
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Linksys Wvc54Gca