Arbitrary File Creation and Overwrite Vulnerability in AXIS Media Control (AMC) ActiveX Control

Arbitrary File Creation and Overwrite Vulnerability in AXIS Media Control (AMC) ActiveX Control

CVE-2013-3543 · HIGH Severity

AV:N/AC:M/AU:N/C:N/I:C/A:C

The AXIS Media Control (AMC) ActiveX control (AxisMediaControlEmb.dll) 6.2.10.11 for AXIS network cameras allows remote attackers to create or overwrite arbitrary files via a file path to the (1) StartRecord, (2) SaveCurrentImage, or (3) StartRecordMedia methods.

Learn more about our Network Penetration Testing.