Summary
The remote IZON IP Camera is prone to a hard-coded credentials bypass vulnerabillity
Impact
Attackers can exploit these issues to gain unauthorized access to the affected device and perform certain administrative actions.
Solution
Ask the Vendor for an update.
Insight
A user can login to the Telnet service (also with root privileges) using the hard-coded credentials
root:stemroot
admin:/ADMIN/
mg3500:merlin
Detection
Start a telnet session with the hard-coded credentials.
References
Severity
Classification
-
CVE CVE-2013-6236 -
CVSS Base Score: 10.0
AV:N/AC:L/Au:N/C:C/I:C/A:C
Related Vulnerabilities