Authentication Bypass Vulnerability in Foscam and Wansview IP Cameras
CVE-2012-3002

Currently unrated

Key Information:

Vendor: Wansview
Status: H.264 Hi3510\/11\/12 Ip Camera
Vendor: CVE Published:; 21 December 2012

What is CVE-2012-3002?

The web interfaces of certain Foscam and Wansview IP cameras are susceptible to an authentication bypass flaw that enables remote attackers to execute administrative tasks and access sensitive information, including the admin password. This vulnerability arises from improper handling of requests to unspecified URLs, significantly compromising the security of these devices. Users are advised to check their firmware versions and apply any available updates to mitigate potential exploits.

References

http://secunia.com/advisories/50966

third-party-advisoryx_refsource_SECUNIA

http://foscam.us/forum/h264-ip-camera-web-interface-authe...

x_refsource_MISC

http://www.kb.cert.org/vuls/id/265532

third-party-advisoryx_refsource_CERT-VN

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 21, 2012
Vulnerability Reserved
May 30, 2012

CVE-2012-3002 Data

JSON