Sign-up

ID

VAR-201707-0081


CVE

CVE-2015-2280


TITLE

AirLink101 SkyIPCam1620W 'snwrite.cgi' OS Command Injection Vulnerability

Trust: 0.9

sources: CNVD: CNVD-2015-04491 // BID: 75597

DESCRIPTION

snwrite.cgi in AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP network camera with firmware FW_AIC1620W_1.1.0-12_20120709_r1192.pck allows remote authenticated users to execute arbitrary OS commands via shell metacharacters in the mac parameter. AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP Network Camera is a wireless network camera product. Successfully exploiting this issue may allow an attacker to execute arbitrary OS commands in the context of the affected device

Trust: 2.52

sources: NVD: CVE-2015-2280 // JVNDB: JVNDB-2015-007669 // CNVD: CNVD-2015-04491 // BID: 75597 // VULHUB: VHN-80241

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2015-04491

AFFECTED PRODUCTS

vendor:airlink101model:skyipcam1620w wireless n mpeg4 3gppscope:eqversion:1.1.0-12_20120709

Trust: 1.6

vendor:airlink101model:skyipcam1620w wireless n mpeg4 3gpp network camerascope:eqversion:fw_aic1620w_1.1.0-12_20120709_r1192.pck

Trust: 0.8

vendor:airlink101model:skyipcam1620wscope: - version: -

Trust: 0.6

vendor:airlink101model:skyipcam1620w wireless n mpeg4 3gpp network camera fw aic1620w 1.0-12 2scope: - version: -

Trust: 0.3

sources: CNVD: CNVD-2015-04491 // BID: 75597 // JVNDB: JVNDB-2015-007669 // CNNVD: CNNVD-201507-212 // NVD: CVE-2015-2280

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-2280
value: HIGH

Trust: 1.0

NVD: CVE-2015-2280
value: HIGH

Trust: 0.8

CNVD: CNVD-2015-04491
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201507-212
value: CRITICAL

Trust: 0.6

VULHUB: VHN-80241
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2015-2280
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2015-04491
severity: HIGH
baseScore: 7.5
vectorString: AV:N/AC:L/AU:N/C:P/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 6.4
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-80241
severity: HIGH
baseScore: 9.0
vectorString: AV:N/AC:L/AU:S/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: SINGLE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 8.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2015-2280
baseSeverity: HIGH
baseScore: 8.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 2.8
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2015-04491 // VULHUB: VHN-80241 // JVNDB: JVNDB-2015-007669 // CNNVD: CNNVD-201507-212 // NVD: CVE-2015-2280

PROBLEMTYPE DATA

problemtype:CWE-78

Trust: 1.9

sources: VULHUB: VHN-80241 // JVNDB: JVNDB-2015-007669 // NVD: CVE-2015-2280

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201507-212

TYPE

operating system commend injection

Trust: 0.6

sources: CNNVD: CNNVD-201507-212

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-007669

EXPLOIT AVAILABILITY
sources:
            
            
            VULHUB: VHN-80241

PATCH
title:SkyIPCam1620W Wireless N MPEG4 3GPP Network Cameraurl:http://airlink101.com/download_links/m-aic1620w.pdf
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2015-007669

EXTERNAL IDS
db:NVDid:CVE-2015-2280
Trust: 3.4
db:BIDid:75597
Trust: 2.6
db:EXPLOIT-DBid:37527
Trust: 1.7
db:PACKETSTORMid:132609
Trust: 1.7
db:JVNDBid:JVNDB-2015-007669
Trust: 0.8
db:CNNVDid:CNNVD-201507-212
Trust: 0.7
db:CNVDid:CNVD-2015-04491
Trust: 0.6
db:SEEBUGid:SSVID-97585
Trust: 0.1
db:VULHUBid:VHN-80241
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2015-04491 // 
            
            
            
            VULHUB: VHN-80241 // 
            
            
            
            BID: 75597 // 
            
            
            
            JVNDB: JVNDB-2015-007669 // 
            
            
            
            CNNVD: CNNVD-201507-212 // 
            
            
            
            NVD: CVE-2015-2280

REFERENCES
url:https://www.coresecurity.com/advisories/airlink101-skyipcam1620w-os-command-injection
Trust: 2.8
url:http://www.securityfocus.com/bid/75597
Trust: 2.3
url:https://www.exploit-db.com/exploits/37527/
Trust: 1.7
url:http://seclists.org/fulldisclosure/2015/jul/40
Trust: 1.7
url:http://packetstormsecurity.com/files/132609/airlink101-skyipcam1620w-os-command-injection.html
Trust: 1.7
url:http://www.securityfocus.com/archive/1/535963/100/0/threaded
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-2280
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2015-2280
Trust: 0.8
url:http://www.securityfocus.com/archive/1/archive/1/535963/100/0/threaded
Trust: 0.6
url:http://www.airlink101.com/
Trust: 0.3
url:http://airlink101.com/products/aic1620w.php
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2015-04491 // 
            
            
            
            VULHUB: VHN-80241 // 
            
            
            
            BID: 75597 // 
            
            
            
            JVNDB: JVNDB-2015-007669 // 
            
            
            
            CNNVD: CNNVD-201507-212 // 
            
            
            
            NVD: CVE-2015-2280

CREDITS
Nahuel Riva of Core Security.
Trust: 0.9
sources:
            
            
            BID: 75597 // 
            
            
            
            CNNVD: CNNVD-201507-212

SOURCES
db:CNVDid:CNVD-2015-04491
db:VULHUBid:VHN-80241
db:BIDid:75597
db:JVNDBid:JVNDB-2015-007669
db:CNNVDid:CNNVD-201507-212
db:NVDid:CVE-2015-2280

LAST UPDATE DATE
2024-11-23T22:30:42.703000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-04491date:2015-07-15T00:00:00
db:VULHUBid:VHN-80241date:2018-10-09T00:00:00
db:BIDid:75597date:2015-07-08T00:00:00
db:JVNDBid:JVNDB-2015-007669date:2017-08-28T00:00:00
db:CNNVDid:CNNVD-201507-212date:2017-07-25T00:00:00
db:NVDid:CVE-2015-2280date:2024-11-21T02:27:08.430

SOURCES RELEASE DATE
db:CNVDid:CNVD-2015-04491date:2015-07-15T00:00:00
db:VULHUBid:VHN-80241date:2017-07-25T00:00:00
db:BIDid:75597date:2015-07-08T00:00:00
db:JVNDBid:JVNDB-2015-007669date:2017-08-28T00:00:00
db:CNNVDid:CNNVD-201507-212date:2015-07-09T00:00:00
db:NVDid:CVE-2015-2280date:2017-07-25T01:29:00.467