Sign-up

ID

VAR-201307-0139


CVE

CVE-2013-1606


TITLE

Ubiquiti UBNT AirCam of airVision Firmware buffer overflow vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2013-003454

DESCRIPTION

Buffer overflow in the ubnt-streamer RTSP service on the Ubiquiti UBNT AirCam with airVision firmware before 1.1.6 allows remote attackers to execute arbitrary code via a long rtsp: URI in a DESCRIBE request. Ubiquiti airCam is an IP network camera device. Multiple Ubiquiti airCam Products are prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code within the context of the affected device. Failed exploit attempts will result in a denial-of-service condition. airCam, airCam Mini, and airCam Dome running firmware 1.1.5 are vulnerable. *Advisory Information* Title: Buffer overflow in Ubiquiti airCam RTSP service Advisory ID: CORE-2013-0430 Advisory URL: http://www.coresecurity.com/advisories/buffer-overflow-ubiquiti-aircam-rtsp-service Date published: 2013-06-11 Date of last update: 2013-06-11 Vendors contacted: Ubiquiti Release mode: Coordinated release 2. *Vulnerability Information* Class: Classic buffer overflow [CWE-120] Impact: Code execution Remotely Exploitable: Yes Locally Exploitable: No CVE Name: CVE-2013-1606 3. 4. *Vulnerable Packages* . Firmware Version Verified: AirCam v1.1.5. Other devices are..

Trust: 2.52

sources: NVD: CVE-2013-1606 // JVNDB: JVNDB-2013-003454 // CNVD: CNVD-2013-07392 // BID: 60487 // VULHUB: VHN-61608

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2013-07392

AFFECTED PRODUCTS

vendor:uimodel:aircamscope:eqversion: -

Trust: 1.0

vendor:uimodel:aircam miniscope:eqversion: -

Trust: 1.0

vendor:uimodel:airvisionscope:lteversion:1.1.5

Trust: 1.0

vendor:uimodel:aircam domescope:eqversion: -

Trust: 1.0

vendor:ubiquitimodel:aircamscope: - version: -

Trust: 0.8

vendor:ubiquitimodel:aircam domescope: - version: -

Trust: 0.8

vendor:ubiquitimodel:aircam miniscope: - version: -

Trust: 0.8

vendor:ubiquitimodel:airvisionscope:ltversion:1.1.6

Trust: 0.8

vendor:ubiquitimodel:aircamscope:eqversion:1.1.5

Trust: 0.6

vendor:ubiquitimodel:aircam miniscope:eqversion:1.1.5

Trust: 0.6

vendor:ubiquitimodel:aircam domescope:eqversion:1.1.5

Trust: 0.6

vendor:ubntmodel:aircam miniscope:eqversion:1.1.5

Trust: 0.3

vendor:ubntmodel:aircam domescope:eqversion:1.1.5

Trust: 0.3

vendor:ubntmodel:aircamscope:eqversion:1.1.5

Trust: 0.3

vendor:ubntmodel:aircamscope:neversion:1.2

Trust: 0.3

vendor:ubntmodel:aircamscope:neversion:1.1.6

Trust: 0.3

sources: CNVD: CNVD-2013-07392 // BID: 60487 // JVNDB: JVNDB-2013-003454 // NVD: CVE-2013-1606

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2013-1606
value: HIGH

Trust: 1.0

NVD: CVE-2013-1606
value: HIGH

Trust: 0.8

CNVD: CNVD-2013-07392
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201306-234
value: MEDIUM

Trust: 0.6

VULHUB: VHN-61608
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2013-1606
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2013-07392
severity: MEDIUM
baseScore: 6.8
vectorString: AV:N/AC:M/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-61608
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2013-07392 // VULHUB: VHN-61608 // JVNDB: JVNDB-2013-003454 // CNNVD: CNNVD-201306-234 // NVD: CVE-2013-1606

PROBLEMTYPE DATA

problemtype:CWE-119

Trust: 1.9

sources: VULHUB: VHN-61608 // JVNDB: JVNDB-2013-003454 // NVD: CVE-2013-1606

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201306-234

TYPE

buffer error

Trust: 0.6

sources: CNNVD: CNNVD-201306-234

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2013-003454

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-61608

PATCH
title:Top Pageurl:http://www.ubnt.com/airvision
Trust: 0.8
title:Patch for multiple Ubiquiti airCam product remote buffer overflow vulnerabilitiesurl:https://www.cnvd.org.cn/patchInfo/show/34615
Trust: 0.6
title:Ubiquiti Networks airCam Buffer error vulnerability fixurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=172047
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2013-07392 // 
            
            
            
            JVNDB: JVNDB-2013-003454 // 
            
            
            
            CNNVD: CNNVD-201306-234

EXTERNAL IDS
db:NVDid:CVE-2013-1606
Trust: 3.4
db:EXPLOIT-DBid:26138
Trust: 1.7
db:BIDid:60487
Trust: 1.0
db:JVNDBid:JVNDB-2013-003454
Trust: 0.8
db:CNVDid:CNVD-2013-07392
Trust: 0.6
db:CNNVDid:CNNVD-201306-234
Trust: 0.6
db:SEEBUGid:SSVID-79784
Trust: 0.1
db:PACKETSTORMid:121986
Trust: 0.1
db:VULHUBid:VHN-61608
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2013-07392 // 
            
            
            
            VULHUB: VHN-61608 // 
            
            
            
            BID: 60487 // 
            
            
            
            JVNDB: JVNDB-2013-003454 // 
            
            
            
            CNNVD: CNNVD-201306-234 // 
            
            
            
            NVD: CVE-2013-1606

REFERENCES
url:http://www.coresecurity.com/advisories/buffer-overflow-ubiquiti-aircam-rtsp-service
Trust: 2.8
url:http://www.exploit-db.com/exploits/26138/
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2013-1606
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2013-1606
Trust: 0.8
url:http://seclists.org/fulldisclosure/2013/jun/73
Trust: 0.6
url:http://www.ubnt.com/download#aircam
Trust: 0.3
url:http://ubnt.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2013-07392 // 
            
            
            
            VULHUB: VHN-61608 // 
            
            
            
            BID: 60487 // 
            
            
            
            JVNDB: JVNDB-2013-003454 // 
            
            
            
            CNNVD: CNNVD-201306-234 // 
            
            
            
            NVD: CVE-2013-1606

CREDITS
Andres Blanco from Core Exploit Writers Team
Trust: 0.9
sources:
            
            
            BID: 60487 // 
            
            
            
            CNNVD: CNNVD-201306-234

SOURCES
db:CNVDid:CNVD-2013-07392
db:VULHUBid:VHN-61608
db:BIDid:60487
db:JVNDBid:JVNDB-2013-003454
db:CNNVDid:CNNVD-201306-234
db:NVDid:CVE-2013-1606

LAST UPDATE DATE
2025-04-11T23:18:54.520000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2013-07392date:2013-06-19T00:00:00
db:VULHUBid:VHN-61608date:2019-06-10T00:00:00
db:BIDid:60487date:2013-06-11T00:00:00
db:JVNDBid:JVNDB-2013-003454date:2013-07-22T00:00:00
db:CNNVDid:CNNVD-201306-234date:2021-11-30T00:00:00
db:NVDid:CVE-2013-1606date:2025-04-11T00:51:21.963

SOURCES RELEASE DATE
db:CNVDid:CNVD-2013-07392date:2013-06-17T00:00:00
db:VULHUBid:VHN-61608date:2013-07-18T00:00:00
db:BIDid:60487date:2013-06-11T00:00:00
db:JVNDBid:JVNDB-2013-003454date:2013-07-22T00:00:00
db:CNNVDid:CNNVD-201306-234date:2013-06-11T00:00:00
db:NVDid:CVE-2013-1606date:2013-07-18T16:51:36.007