Cross-Site Scripting Vulnerabilities in Cisco Linksys Wireless Video Camera
CVE-2009-1557

Currently unrated

Key Information:

Vendor

Cisco
Status
Wvc54gca
Vendor
CVE Published:
6 May 2009

What is CVE-2009-1557?

The Cisco Linksys WVC54GCA wireless video camera is susceptible to multiple cross-site scripting (XSS) vulnerabilities. These flaws arise from improper handling of user-supplied input in the next_file parameter for various CGI scripts, including main.cgi, img/main.cgi, and adm/file.cgi. Attackers can exploit these vulnerabilities to inject arbitrary web script or HTML, potentially allowing them to execute malicious actions in the context of an unsuspecting user's session.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/50224
vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/34714
vdb-entryx_refsource_BID
http://www.vupen.com/english/advisories/2009/1173
vdb-entryx_refsource_VUPEN

EPSS Score

13% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.