N/A

Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW001, running firmware 4.30 and earlier, allow remote attackers to bypass authentication and obtain sensitive information via a leading "/./" in a request to en/account/accedit.asp.

N/A

N/A

多款Y-Cam产品安全漏洞

Y-Cam camera models SD range YCB003等都是英国Y-Cam公司的网络摄像机产品。 多款Y-Cam产品中存在安全漏洞。远程攻击者可通过向en/account/accedit.asp文件发送带有‘/./’字符的请求，利用该漏洞绕过身份验证，获取敏感信息。以下产品受到影响：使用4.30及之前版本固件的Y-Cam camera models SD range YCB003，YCK003，YCW003；S range YCB004，YCK004，YCW004；EyeBall YCEB

N/A

N/A