CVE-2010-4233:cmnc-200, cmnc-200_firmware: The Linux installation on the Camtron CMNC-200 Full...

VRDA Feed by

Vulnerability Response Decision Assistance Feed : Information for vulnerability impact analysis

[ about VRDA Feed | JPCERT/CC ]

Vulnerability Analysis Result (Revision No : 1)

[ Download XML ]

CVE-2010-4233

cmnc-200, cmnc-200_firmware: The Linux installation on the Camtron CMNC-200 Full...

http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2010-4233

Original

The Linux installation on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 has a default password of m for the root account, and a default password of merlin for the mg3500 account, which makes it easier for remote attackers to obtain access via the TELNET interface.

Translation (Show)

About This Analysis Information

Analysis Information Provider:

NIST NVD

First Published:

2010-11-17

Source Information Category:

Advisory, Alert

Last Updated:

2010-11-17

Affected Product Tags

cpe:/a:camtron:cmnc-200_firmware:1.102a-008

cpe:/a:tecvoz:cmnc-200_firmware:1.102a-008

cpe:/h:camtron:cmnc-200

cpe:/h:tecvoz:cmnc-200

Vulnerability Analysis Results

[Access Vector] ^[?]

Undefined^[?]

Local^[?]

Adjacent Network^[?]

Network^[?]

[Access Complexit] ^[?]

Undefined^[?]

High^[?]

Medium^[?]

Low^[?]

[Authentication] ^[?]

Undefined^[?]

Multiple^[?]

Single^[?]

None^[?]

[Confidentiality Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Integrity Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

[Availability Impact] ^[?]

Undefined^[?]

None^[?]

Partial^[?]

Complete^[?]

Alternatives

References

BUGTRAQ 20101112 TWSL2010-006: Multiple Vulnerabilities in Camtron CMNC-200 IP Camera

EXPLOIT-DB 15507

MISC https://www.trustwave.com/spiderlabs/advisories/TWSL2010-006.txt

Vulnerability Type Permissions, Privileges, and Access Control (CWE-264)