Sign-up

ID

VAR-201703-1379


TITLE

Wireless IP Camera (P2P) WIFICAM \342\200\230Cloud\342\200\231 Feature Design Defect Vulnerability

Trust: 0.6

sources: CNVD: CNVD-2017-02778

DESCRIPTION

WirelessIPCamera (P2P) WIFICAM is a wireless IP camera. The WirelessIPCamera (P2P) WIFICAM 'Cloud' feature has a design flaw vulnerability. The camera provides a \"Cloud\" feature that is enabled by default and allows consumers to bypass the NAT and firewall using a clear text UDP channel through the network management device. Attackers can use this feature to launch brute-forceattacks to guess the credential information of the device.

Trust: 0.6

sources: CNVD: CNVD-2017-02778

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2017-02778

AFFECTED PRODUCTS

vendor:foscammodel:wireless ip camera wificamscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2017-02778

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2017-02778
value: HIGH

Trust: 0.6

CNVD: CNVD-2017-02778
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:C/I:N/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2017-02778

EXTERNAL IDS

db:CNVDid:CNVD-2017-02778

Trust: 0.6

sources: CNVD: CNVD-2017-02778

REFERENCES

url:http://seclists.org/bugtraq/2017/mar/32

Trust: 0.6

url:https://pierrekim.github.io/blog/2017-03-08-camera-goahead-0day.html?from=timeline&isappinstalled=0

Trust: 0.6

sources: CNVD: CNVD-2017-02778

SOURCES

db:CNVDid:CNVD-2017-02778

LAST UPDATE DATE

2022-05-04T09:47:45.885000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2017-02778date:2017-03-18T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2017-02778date:2017-03-18T00:00:00