PT-2010-5373 · Camtron+1 · Camtron Cmnc-200+1

Published

2010-11-16

Updated

2018-10-10

CVE-2010-4233

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera firmware 1.102A-008

Description The issue allows remote attackers to obtain access via the TELNET interface due to default passwords for the root and mg3500 accounts. The default password for the root account is m, and the default password for the mg3500 account is merlin.

Recommendations For Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008, change the default passwords for the root and mg3500 accounts to secure passwords. As a temporary workaround, consider disabling the TELNET interface until secure passwords are set.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-255

Related Identifiers

CVE-2010-4233

Affected Products

Camtron Cmnc-200

Tecvoz Cmnc-200

PT-2010-5373 · Camtron+1 · Camtron Cmnc-200+1

CVE-2010-4233

Weakness Enumeration

Related Identifiers

Affected Products

References · 5