Weak Password Encryption in GeoVision Digital Video Surveillance System
CVE-2005-1553

Currently unrated

Key Information:

Vendor: Geovision
Status: Digital Surveillance System
Vendor: CVE Published:; 14 May 2005

What is CVE-2005-1553?

The GeoVision Digital Video Surveillance System versions 6.04, 6.1, and 7.0 implement a weak encryption mechanism for user passwords. This flawed approach enables remote attackers to capture and decrypt these passwords through sniffing techniques, thereby compromising user accounts and potentially accessing sensitive surveillance information. Organizations using this software need to assess their exposure and consider necessary mitigations to safeguard their systems against unauthorized access.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/20538

vdb-entryx_refsource_XF

http://www.osvdb.org/16341

vdb-entryx_refsource_OSVDB

http://www.esqo.com/research/advisories/2005/100505-1.txt

x_refsource_MISC

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2005
Vulnerability Reserved
May 14, 2005

Geovision

What is CVE-2005-1553?

References

Timeline