← back
CVE-2010-4232

CVE-2010-4232

EPSS 4.3%
The web-based administration interface on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to bypass authentication via a // (slash slash) at the beginning of a URI, as demonstrated by the //system.html URI.
Affected products
n/a · n/a
public PoCs found2
cve_referencewww.exploit-db.com/exploits/15506unverifiedexploitdbwww.exploit-db.com/exploits/15506unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://www.trustwave.com/spiderlabs/advisories/TWSL2010-006.txthttp://www.exploit-db.com/exploits/15506http://www.securityfocus.com/archive/1/514753/100/0/threaded