HomePentest-Tools.com Logo

D-Link IP Camera DCS-2103 < 1.20 XSS Vulnerability - Active Check CVE-2014-9517

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

D-Link IP Camera DCS-2103 is prone to a cross-site scripting (XSS) vulnerability.

Risk description

The flaw is due to an input passed via the vb.htm script to the QUERY_STRING parameter is not properly sanitized. Successful exploitation will allow attacker to execute arbitrary HTML and script code in a users browser session in the context of an affected site.

Recommendation

Update to version 1.20 or later.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Jan 5, 2015
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available