Remote Password Disclosure in AirLive WL2600CAM and Other Camera Models

Remote Password Disclosure in AirLive WL2600CAM and Other Camera Models

CVE-2013-3686 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

cgi-bin/operator/param in AirLive WL2600CAM and possibly other camera models allows remote attackers to obtain the administrator password via a list action.

Learn more about our Web Application Penetration Testing UK.