CVE-2014-1849 - Foscam IP camera 11.37.2.49 and other versions, when using the Foscam DynDNS option, generates crede

CVE-2014-1849

Summary

Foscam IP camera 11.37.2.49 and other versions, when using the Foscam DynDNS option, generates credentials based on predictable camera subdomain names, which allows remote attackers to spoof or hijack arbitrary cameras and conduct other attacks by modifying arbitrary camera records in the Foscam DNS server.

References

Vulnerable Configurations

cpe:2.3:o:foscam:ip_camera_firmware:11.37.2.49:*:*:*:*:*:*:*
cpe:2.3:o:foscam:ip_camera_firmware:11.37.2.49:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 14-05-2014 - 18:43)
Impact:
Exploitability:

CWE

CWE-255

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

fulldisc	20140508 CVE-2014-1849 Foscam Dynamic DNS predictable credentials vulnerability
misc	http://blog.shekyan.com/2014/05/cve-2014-1849-foscam-dynamic-dns-predictable-credentials-vulnerability.html https://github.com/artemharutyunyan/getmecamtool/blob/master/src/dnsmod.c

Last major update

14-05-2014 - 18:43

Published

14-05-2014 - 00:55

Last modified

14-05-2014 - 18:43