|
Vulnerability Assessment & Network Security Forums |
|||||||||
If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important. If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery. Home >> Browse Vulnerability Assessment Database >> CGI abuses >> Multiple Vulnerabilities in Active WebCam Webserver 5.5 and older Vulnerability Assessment Details
|
Multiple Vulnerabilities in Active WebCam Webserver 5.5 and older |
||
Checks for multiple remote vulnerabilities in Active WebCam webserver 5.5 and older Detailed Explanation for this Vulnerability Assessment Summary : The remote web server is affected by multiple vulnerabilities. Description : The version of PY Software's Active WebCam webserver running on the remote host is prone to multiple vulnerabilities: o Denial of Service Vulnerabilities. A request for a file on floppy drive may result in a dialog prompt, causing service to cease until it is acknowledged by an administrator. In addition, requesting the file 'Filelist.html' reportedly causes CPU usage on the remote host to increase, ultimately leading to denial of service. o Information Disclosure Vulnerabilities. A request for a non-existent file will return an error message with the installation path for the software. Further, error messages differ depending on whether a file exists or is inaccessible. A possible hacker may exploit these issues to gain information about the filesystem on the remote host. Note that while versions 4.3 and 5.5 are known to be affected, earlier versions are likely to be as well. See also : http://secway.org/advisory/ad20050104.txt http://archives.neohapsis.com/archives/fulldisclosure/2005-03/0216.html Solution : Unknown at this time. Network Security Threat Level: Low / CVSS Base Score : 2 (AV:R/AC:L/Au:NR/C:N/A:P/I:N/B:N) Networks Security ID: 12778 Vulnerability Assessment Copyright: This script is Copyright (C) 2005-2007 Tenable Network Security |
||
Cables, Connectors |
Dell Poweredge R640 Server | 2x Silver 4114 20 Cores | 64GB | 8x HDD Trays
$1614.99
Websense V10000 G2 V-Series 2 x Intel X5550 @267Ghz Quad Core 24GB MEM NO HDD
$199.99
Dell PowerEdge R740XD Server | 2x Gold 6140 | 512GB | H730P | 12x 3.5" HDD Tray
$3599.00
Dell R730xd 12LFF 1.8Ghz 20-C 256GB H730 2x10G+2x1G NIC 2x1100W 12x Trays Rails
$939.05
Intel Xeon E5-2680 v4 2.4GHz 35MB 14-Core 120W LGA2011-3 SR2N7
$17.99
Intel Xeon E5-2699v4 SR2JS 2.2GHz 22-Core 55MB 145W Server Processor CPU
$144.95
Intel Xeon Gold 6140 SR3AX 2.3GHz 18-Core Processor CPU
$39.99
Intel Xeon Gold 6126 2.6 GHz LGA 3647 Server CPU Processor SR3B3
$17.99
HP Workstation Z640 2x Xeon E5-2623V4 32GB Ram Dual 256GB SSD K420 Linux GA
$234.98
Dell Precision T5600/t5610 Xeon E5-2670 2.6Ghz 16GB DDR3 RAM NO HDD Nvidia
$90.00
|
||
No Discussions have been posted on this vulnerability. |