← back
CVE-2013-1602

CVE-2013-1602

EPSS 15.1%
An Information Disclosure vulnerability exists due to insufficient validation of authentication cookies for the RTSP session in D-Link DCS-5635 1.01, DCS-1100L 1.04, DCS-1130L 1.04, DCS-1100 1.03/1.04_US, DCS-1130 1.03/1.04_US , DCS-2102 1.05_RU/1.06/1.06_FR/1.05_TESCO, DCS-2121 1.05_RU/1.06/1.06_FR/1.05_TESCO, DCS-3410 1.02, DCS-5230 1.02, DCS-5230L 1.02, DCS-6410 1.0, DCS-7410 1.0, DCS-7510 1.0, and WCS-1100 1.02, which could let a malicious user obtain unauthorized access to video streams.
Affected products
n/a · n/a
public PoCs found2
cve_referencepacketstormsecurity.com/files/cve/CVE-2013-1602unverifiedexploitdbwww.exploit-db.com/exploits/25138unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://exchange.xforce.ibmcloud.com/vulnerabilities/83942https://packetstormsecurity.com/files/cve/CVE-2013-1602https://www.coresecurity.com/advisories/d-link-ip-cameras-multiple-vulnerabilitieshttp://www.securityfocus.com/bid/59569