Details of VAR-201405-0317

ID

VAR-201405-0317

CVE

CVE-2014-1849

TITLE

Foscam IP camera Vulnerable to camouflaging or hijacking any camera

Trust: 0.8

sources: JVNDB: JVNDB-2014-002495

DESCRIPTION

Foscam IP camera 11.37.2.49 and other versions, when using the Foscam DynDNS option, generates credentials based on predictable camera subdomain names, which allows remote attackers to spoof or hijack arbitrary cameras and conduct other attacks by modifying arbitrary camera records in the Foscam DNS server. FOSCAM IP-Cameras is a webcam device. An information disclosure vulnerability exists in Foscam IP Camera version 11.37.2.49. When using the Foscam DynDNS option, the program uses the camera subdomain as the username and password. An attacker can exploit this issue to gain access to sensitive information and perform certain unauthorized actions; this may lead to further attacks

Trust: 2.52

sources: NVD: CVE-2014-1849 // JVNDB: JVNDB-2014-002495 // CNVD: CNVD-2014-03022 // BID: 67510 // VULHUB: VHN-69788

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2014-03022

AFFECTED PRODUCTS

vendor:	foscam	model:	ip camera	scope:	eq	version:	11.37.2.49	Trust: 1.6
vendor:	foscam intelligent	model:	ip camera	scope:	eq	version:	11.37.2.49	Trust: 0.8
vendor:	-	model:	foscam intelligent technology limited copyright. foscam ip camera	scope:	eq	version:	11.37.2.49	Trust: 0.6
vendor:	foscam digital	model:	ip camera	scope:	eq	version:	11.37.2.49	Trust: 0.3

sources: CNVD: CNVD-2014-03022 // BID: 67510 // JVNDB: JVNDB-2014-002495 // CNNVD: CNNVD-201405-228 // NVD: CVE-2014-1849

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2014-1849
value:	HIGH
Trust: 1.0
NVD:	CVE-2014-1849
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2014-03022
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201405-228
value:	CRITICAL
Trust: 0.6
VULHUB:	VHN-69788
value:	HIGH
Trust: 0.1

nvd@nist.gov:	CVE-2014-1849
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2014-03022
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-69788
severity:	HIGH
baseScore:	10.0
vectorString:	AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: CNVD: CNVD-2014-03022 // VULHUB: VHN-69788 // JVNDB: JVNDB-2014-002495 // CNNVD: CNNVD-201405-228 // NVD: CVE-2014-1849

PROBLEMTYPE DATA

problemtype:

CWE-255

Trust: 1.9

sources: VULHUB: VHN-69788 // JVNDB: JVNDB-2014-002495 // NVD: CVE-2014-1849

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201405-228

TYPE

trust management

Trust: 0.6

sources: CNNVD: CNNVD-201405-228

CONFIGURATIONS

sources: JVNDB: JVNDB-2014-002495

EXPLOIT AVAILABILITY

sources: VULHUB: VHN-69788

PATCH

title:

Top Page

url:

http://foscam.us/

Trust: 0.8

sources: JVNDB: JVNDB-2014-002495

EXTERNAL IDS

db:	NVD	id:	CVE-2014-1849	Trust: 3.4
db:	JVNDB	id:	JVNDB-2014-002495	Trust: 0.8
db:	CNNVD	id:	CNNVD-201405-228	Trust: 0.7
db:	CNVD	id:	CNVD-2014-03022	Trust: 0.6
db:	FULLDISC	id:	20140508 CVE-2014-1849 FOSCAM DYNAMIC DNS PREDICTABLE CREDENTIALS VULNERABILITY	Trust: 0.6
db:	BID	id:	67510	Trust: 0.4
db:	EXPLOIT-DB	id:	39195	Trust: 0.1
db:	PACKETSTORM	id:	126559	Trust: 0.1
db:	VULHUB	id:	VHN-69788	Trust: 0.1

sources: CNVD: CNVD-2014-03022 // VULHUB: VHN-69788 // BID: 67510 // JVNDB: JVNDB-2014-002495 // CNNVD: CNNVD-201405-228 // NVD: CVE-2014-1849

REFERENCES

url:	http://blog.shekyan.com/2014/05/cve-2014-1849-foscam-dynamic-dns-predictable-credentials-vulnerability.html	Trust: 2.8
url:	https://github.com/artemharutyunyan/getmecamtool/blob/master/src/dnsmod.c	Trust: 2.5
url:	http://seclists.org/fulldisclosure/2014/may/35	Trust: 2.3
url:	http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2014-1849	Trust: 0.8
url:	http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2014-1849	Trust: 0.8
url:	http://www.foscam.com/	Trust: 0.3

sources: CNVD: CNVD-2014-03022 // VULHUB: VHN-69788 // BID: 67510 // JVNDB: JVNDB-2014-002495 // CNNVD: CNNVD-201405-228 // NVD: CVE-2014-1849

CREDITS

Sergey Shekyan

Trust: 0.3

sources: BID: 67510

SOURCES

db:	CNVD	id:	CNVD-2014-03022
db:	VULHUB	id:	VHN-69788
db:	BID	id:	67510
db:	JVNDB	id:	JVNDB-2014-002495
db:	CNNVD	id:	CNNVD-201405-228
db:	NVD	id:	CVE-2014-1849

LAST UPDATE DATE

2024-08-14T14:14:11.510000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2014-03022	date:	2014-05-16T00:00:00
db:	VULHUB	id:	VHN-69788	date:	2014-05-14T00:00:00
db:	BID	id:	67510	date:	2014-05-08T00:00:00
db:	JVNDB	id:	JVNDB-2014-002495	date:	2014-05-16T00:00:00
db:	CNNVD	id:	CNNVD-201405-228	date:	2014-06-04T00:00:00
db:	NVD	id:	CVE-2014-1849	date:	2014-05-14T18:43:10.867

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2014-03022	date:	2014-05-16T00:00:00
db:	VULHUB	id:	VHN-69788	date:	2014-05-14T00:00:00
db:	BID	id:	67510	date:	2014-05-08T00:00:00
db:	JVNDB	id:	JVNDB-2014-002495	date:	2014-05-16T00:00:00
db:	CNNVD	id:	CNNVD-201405-228	date:	2014-05-15T00:00:00
db:	NVD	id:	CVE-2014-1849	date:	2014-05-14T00:55:08.133