CVE-2013-2580 - Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3

CVE-2013-2580

Summary

Unrestricted file upload vulnerability in cgi-bin/uploadfile in TP-Link IP Cameras TL-SC3130, TL-SC3130G, TL-SC3171, TL-SC3171G, and possibly other models before beta firmware LM.1.6.18P12_sign6, allows remote attackers to upload arbitrary files, then accessing it via a direct request to the file in the mnt/mtd directory. Per: http://cwe.mitre.org/data/definitions/434.html 'CWE-434: Unrestricted Upload of File with Dangerous Type'

References

http://www.coresecurity.com/advisories/multiple-vulnerabilities-tp-link-tl-sc3171-ip-cameras

Vulnerable Configurations

cpe:2.3:h:tp-link:tl-sc3130:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sc3130:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sc3130g:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sc3130g:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sc3171:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sc3171:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sc3171g:-:*:*:*:*:*:*:*
cpe:2.3:h:tp-link:tl-sc3171g:-:*:*:*:*:*:*:*
cpe:2.3:o:tp-link:lm_firmware:1.6.18p12_sign5:*:*:*:*:*:*:*
cpe:2.3:o:tp-link:lm_firmware:1.6.18p12_sign5:*:*:*:*:*:*:*

CVSS

Base:	7.1 (as of 15-10-2013 - 13:23)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
NONE	COMPLETE	NONE

cvss-vector via4

AV:N/AC:M/Au:N/C:N/I:C/A:N

refmap via4

misc

http://www.coresecurity.com/advisories/multiple-vulnerabilities-tp-link-tl-sc3171-ip-cameras

Last major update

15-10-2013 - 13:23

Published

11-10-2013 - 21:55

Last modified

15-10-2013 - 13:23