Release date: 2013-03-27
Updated on: 2013-03-29
Affected Systems:
StarVedia IP Camera IC502w +
Description:
--------------------------------------------------------------------------------
StarVedia IP Camera IC502w + is a plug-and-play Network Camera.
StarVedia IP Camera IC502w + 020313 and other versions do not properly restrict access to cgi-bin/passwd. cgi, which can be exploited to leak or Change User creden.
<* Source: todordonev.
Link: http://secunia.com/advisories/52677/
Http://packetstormsecurity.com/files/120873/StarVedia-IPCamera-Remote-Username-Password-Disclosure.html
*>
Suggestion:
--------------------------------------------------------------------------------
Vendor patch:
StarVedia
---------
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://www.starvedia.com/