Authentication Bypass Vulnerability in D-Link DCS-1130 and DCS-1100 IP Cameras
CVE-2017-8405

7.5HIGH

Key Information:

Vendor
D-Link
Status
Dcs-1100 Firmware
Vendor
CVE Published:
2 July 2019

Summary

An authentication bypass vulnerability has been identified in D-Link DCS-1130 and DCS-1100 IP cameras, which allows unauthorized users to access live video feeds. The issue arises from the binary 'rtspd', which by default does not enforce user authentication for RTSP URLs despite requiring a valid username and password for the HTTP management interface. The authentication flag is set to zero by default, creating a potential risk for over 100,000 devices globally, enabling attackers with knowledge of the camera's external IP address to stream video content without proper authorization.

References

https://seclists.org/bugtraq/2019/Jun/8
mailing-listx_refsource_BUGTRAQ
http://packetstormsecurity.com/files/153226/Dlink-DCS-113...
x_refsource_MISC
https://github.com/ethanhunnt/IoT_vulnerabilities/blob/ma...
x_refsource_MISC

CVSS V3.1

Score:
7.5
Severity:
HIGH
Confidentiality:
High
Integrity:
None
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.