N/A

'/cgi-bin/admin/downloadMedias.cgi' of the web service in most of the VIVOTEK Network Cameras is vulnerable, which allows remote attackers to read any file on the camera's Linux filesystem via a crafted HTTP request containing ".." sequences. This vulnerability is already verified on VIVOTEK Network Camera IB8369/FD8164/FD816BA; most others have similar firmware that may be affected.

N/A

N/A

VIVOTEK Network Cameras IB8369、FD8164和FD816BA 安全漏洞

VIVOTEK Network Cameras IB8369、FD8164和FD816BA都是中国晶睿通讯（VIVOTEK）公司的网络摄像机产品。 VIVOTEK Network Cameras IB8369、FD8164和FD816BA中的Web服务器的/cgi-bin/admin/downloadMedias.cgi文件存在安全漏洞。攻击者可通过发送带有‘..’的HTTP请求利用该漏洞读取摄像机Linux文件系统上的任意文件。

N/A

N/A