Sign-up

ID

VAR-201505-0151


CVE

CVE-2014-1902


TITLE

plural Y-Cam Cross-site scripting vulnerability in camera firmware

Trust: 0.8

sources: JVNDB: JVNDB-2014-008048

DESCRIPTION

Multiple cross-site scripting (XSS) vulnerabilities in Y-Cam camera models SD range YCB003, YCK003, and YCW003; S range YCB004, YCK004, YCW004; EyeBall YCEB03; Bullet VGA YCBL03 and YCBLB3; Bullet HD 720 YCBLHD5; Y-cam Classic Range YCB002, YCK002, and YCW003; and Y-cam Original Range YCB001, YCW001, running firmware 4.30 and earlier, allow remote authenticated users to inject arbitrary web script or HTML via the (1) SYSCONTACT parameter to form/identityApply, as triggered using en/identity.asp; (2) PASSWD parameter to form/accAdd, as triggered using en/account/accedit.asp; (3) NTPSERVER parameter to form/clockApply, as triggered using en/clock.asp; (4) SERVER parameter to form/smtpclientApply, as triggered using en/smtpclient.asp; (5) SERVER parameter to form/ftpApply, as triggered using en/ftp.asp; or (6) SERVER parameter to form/httpEventApply, as triggered using en/httpevent.asp. plural Y-Cam The camera firmware contains a cross-site scripting vulnerability.By the remotely authenticated user via the following parameters Web Script or HTML May be inserted. (1) en/identity.asp When induced to use form/identityApply of SYSCONTACT Parameters (2) en/account/accedit.asp When induced to use form/accAdd of PASSWD Parameters (3) en/clock.asp When induced to use form/clockApply of NTPSERVER Parameters (4) en/smtpclient.asp When induced to use form/smtpclientApply of SERVER Parameters (5) en/ftp.asp When induced to use form/ftpApply of SERVER Parameters (6) en/httpevent.asp When induced to use form/httpEventApply of SERVER Parameters. Y-Cam camera is a wireless network security surveillance camera system launched by Y-cam. Multiple Y-Cam Camera Models are prone to the following security vulnerabilities: 1. A directory-traversal vulnerability 2. Multiple denial-of-service vulnerabilities 3. Multiple HTML-injection vulnerabilities An attacker can exploit these issues to perform unauthorized actions, bypass security restrictions, cause denial-of-service conditions, execute attacker-supplied HTML or JavaScript code in the context of the affected site, to steal cookie-based authentication credentials or gain access to sensitive information. Y-Cam camera models SD range YCB003 etc. There is a cross-site scripting vulnerability in many Y-Cam products. The vulnerability is caused by the fact that the en/identity.asp file does not fully filter the 'SYSCONTACT' parameter; the en/account/accedit.asp file does not fully filter the 'PASSWD' parameter; en/clock The .asp file does not sufficiently filter the 'NTPSERVER' parameter; the en/smtpclient.asp file does not sufficiently filter the 'SERVER' parameter; the en/ftp.asp file does not sufficiently filter the 'SERVER' parameter; the en/httpevent.asp file does not sufficiently filter the 'SERVER' parameter 'parameter

Trust: 2.52

sources: NVD: CVE-2014-1902 // JVNDB: JVNDB-2014-008048 // CNVD: CNVD-2015-03160 // BID: 67447 // VULHUB: VHN-69841

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

category:['camera device']sub_category:camera

Trust: 0.1

sources: OTHER: None // CNVD: CNVD-2015-03160

AFFECTED PRODUCTS

vendor:y cammodel:ycw002scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycblb3scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycb003scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycb001scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycblhd5scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:yck004scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycbl03scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycw003scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycw001scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycw004scope:eqversion:4.30

Trust: 1.6

vendor:y cammodel:ycb002scope:eqversion:4.30

Trust: 1.0

vendor:y cammodel:ycblb3scope:eqversion:*

Trust: 1.0

vendor:y cammodel:ycb004scope:eqversion:4.30

Trust: 1.0

vendor:y cammodel:yck002scope:eqversion:4.30

Trust: 1.0

vendor:y cammodel:ycw004scope:eqversion:*

Trust: 1.0

vendor:y cammodel:ycbl03scope:eqversion:*

Trust: 1.0

vendor:y cammodel:yck003scope:eqversion:4.30

Trust: 1.0

vendor:y cammodel:yceb03scope:eqversion:4.30

Trust: 1.0

vendor:y cammodel:ycb001scope: - version: -

Trust: 0.8

vendor:y cammodel:ycb001scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycb002scope: - version: -

Trust: 0.8

vendor:y cammodel:ycb002scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycb003scope: - version: -

Trust: 0.8

vendor:y cammodel:ycb003scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycb004scope: - version: -

Trust: 0.8

vendor:y cammodel:ycb004scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycbl03scope: - version: -

Trust: 0.8

vendor:y cammodel:ycbl03scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycblb3scope: - version: -

Trust: 0.8

vendor:y cammodel:ycblb3scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycblhd5scope: - version: -

Trust: 0.8

vendor:y cammodel:ycblhd5scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:yceb03scope: - version: -

Trust: 0.8

vendor:y cammodel:yceb03scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:yck002scope: - version: -

Trust: 0.8

vendor:y cammodel:yck002scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:yck003scope: - version: -

Trust: 0.8

vendor:y cammodel:yck003scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:yck004scope: - version: -

Trust: 0.8

vendor:y cammodel:yck004scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycw001scope: - version: -

Trust: 0.8

vendor:y cammodel:ycw001scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycw002scope: - version: -

Trust: 0.8

vendor:y cammodel:ycw002scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycw003scope: - version: -

Trust: 0.8

vendor:y cammodel:ycw003scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:ycw004scope: - version: -

Trust: 0.8

vendor:y cammodel:ycw004scope:lteversion:4.30

Trust: 0.8

vendor:y cammodel:yck002/yck004/yck001/yckl03/ycw004/ycb002/ycw002/ycw003/ycblhd5/ycblb3/ycb003/yck003/yceb03/ycw001/yck004scope:eqversion:4.30

Trust: 0.6

vendor:y cammodel:solutions y-cam ycw004scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw004scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw003scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw003scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw001scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw001scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam yck004scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam yck004scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam yck003scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam yck003scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam yck002scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam yck002scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam yceb03scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam yceb03scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblhd5scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblhd5scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblb3scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblb3scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycbl03scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycbl03scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb004scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb004scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb003scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb003scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb002scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb002scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb001scope:eqversion:4.30

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb001scope:eqversion:4.23

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw004scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw004scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw003scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw003scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycw001scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam yck004scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam yck004scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam yck003scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam yck003scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam yck002scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam yck002scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam yceb03scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam yceb03scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblhd5scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblhd5scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblb3scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycblb3scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycbl03scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycbl03scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb004scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb004scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb003scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb003scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb002scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb002scope:neversion:4.50

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb001scope:neversion:4.51

Trust: 0.3

vendor:y cammodel:solutions y-cam ycb001scope:neversion:4.50

Trust: 0.3

sources: CNVD: CNVD-2015-03160 // BID: 67447 // JVNDB: JVNDB-2014-008048 // CNNVD: CNNVD-201505-210 // NVD: CVE-2014-1902

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2014-1902
value: LOW

Trust: 1.0

NVD: CVE-2014-1902
value: LOW

Trust: 0.8

CNVD: CNVD-2015-03160
value: LOW

Trust: 0.6

CNNVD: CNNVD-201505-210
value: LOW

Trust: 0.6

VULHUB: VHN-69841
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2014-1902
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2015-03160
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-69841
severity: LOW
baseScore: 3.5
vectorString: AV:N/AC:M/AU:S/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: SINGLE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 6.8
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2015-03160 // VULHUB: VHN-69841 // JVNDB: JVNDB-2014-008048 // CNNVD: CNNVD-201505-210 // NVD: CVE-2014-1902

PROBLEMTYPE DATA

problemtype:CWE-79

Trust: 1.9

sources: VULHUB: VHN-69841 // JVNDB: JVNDB-2014-008048 // NVD: CVE-2014-1902

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201505-210

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201505-210

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2014-008048

PATCH
title:Y-cam Security Fixurl:http://www.y-cam.com/y-cam-security-fix/
Trust: 0.8
title:Patch for Y-Cam multi-product cross-site scripting vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/58623
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2015-03160 // 
            
            
            
            JVNDB: JVNDB-2014-008048

EXTERNAL IDS
db:NVDid:CVE-2014-1902
Trust: 3.5
db:JVNDBid:JVNDB-2014-008048
Trust: 0.8
db:CNNVDid:CNNVD-201505-210
Trust: 0.7
db:CNVDid:CNVD-2015-03160
Trust: 0.6
db:BIDid:67447
Trust: 0.3
db:OTHERid:NONE
Trust: 0.1
db:VULHUBid:VHN-69841
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2015-03160 // 
            
            
            
            VULHUB: VHN-69841 // 
            
            
            
            BID: 67447 // 
            
            
            
            JVNDB: JVNDB-2014-008048 // 
            
            
            
            CNNVD: CNNVD-201505-210 // 
            
            
            
            NVD: CVE-2014-1902

REFERENCES
url:https://www.trustwave.com/resources/security-advisories/advisories/twsl2014-007/?fid=3850
Trust: 3.1
url:http://www.y-cam.com/y-cam-security-fix/
Trust: 2.0
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-1902
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-1902
Trust: 0.8
url:http://www.y-cam.com/
Trust: 0.3
url:https://www3.trustwave.com/spiderlabs/advisories/twsl2014-007.txt
Trust: 0.3
url:https://ieeexplore.ieee.org/abstract/document/10769424
Trust: 0.1
sources:
            
            
            OTHER: None // 
            
            
            
            CNVD: CNVD-2015-03160 // 
            
            
            
            VULHUB: VHN-69841 // 
            
            
            
            BID: 67447 // 
            
            
            
            JVNDB: JVNDB-2014-008048 // 
            
            
            
            CNNVD: CNNVD-201505-210 // 
            
            
            
            NVD: CVE-2014-1902

CREDITS
David Aaron of Trustwave SpiderLabs
Trust: 0.3
sources:
            
            
            BID: 67447

SOURCES
db:OTHERid: - 
db:CNVDid:CNVD-2015-03160
db:VULHUBid:VHN-69841
db:BIDid:67447
db:JVNDBid:JVNDB-2014-008048
db:CNNVDid:CNNVD-201505-210
db:NVDid:CVE-2014-1902

LAST UPDATE DATE
2025-04-13T22:44:58.364000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-03160date:2015-05-19T00:00:00
db:VULHUBid:VHN-69841date:2015-05-15T00:00:00
db:BIDid:67447date:2014-01-05T00:00:00
db:JVNDBid:JVNDB-2014-008048date:2015-05-19T00:00:00
db:CNNVDid:CNNVD-201505-210date:2015-05-14T00:00:00
db:NVDid:CVE-2014-1902date:2025-04-12T10:46:40.837

SOURCES RELEASE DATE
db:CNVDid:CNVD-2015-03160date:2015-05-19T00:00:00
db:VULHUBid:VHN-69841date:2015-05-14T00:00:00
db:BIDid:67447date:2014-01-05T00:00:00
db:JVNDBid:JVNDB-2014-008048date:2015-05-19T00:00:00
db:CNNVDid:CNNVD-201505-210date:2015-05-14T00:00:00
db:NVDid:CVE-2014-1902date:2015-05-14T00:59:02.537