PT-2007-3997 · Canon · Canon Network Camera Server Vb100+2

Published

2007-05-15

Updated

2011-03-08

CVE-2007-2680

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Canon Network Camera Server VB100 versions 3.0 R69 and earlier Canon Network Camera Server VB101 versions 3.0 R69 and earlier Canon Network Camera Server VB150 versions 1.1 R39 and earlier

Description A cross-site scripting (XSS) issue exists in the management interface, allowing remote attackers to inject arbitrary web script or HTML. This could potentially lead to unauthorized access or control of the camera server.

Recommendations For Canon Network Camera Server VB100 versions 3.0 R69 and earlier, update to a version later than 3.0 R69. For Canon Network Camera Server VB101 versions 3.0 R69 and earlier, update to a version later than 3.0 R69. For Canon Network Camera Server VB150 versions 1.1 R39 and earlier, update to a version later than 1.1 R39.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-2680

Affected Products

Canon Network Camera Server Vb100

Canon Network Camera Server Vb101

Canon Network Camera Server Vb150

PT-2007-3997 · Canon · Canon Network Camera Server Vb100+2

CVE-2007-2680

Related Identifiers

Affected Products

References · 7