TrackerCam Multiple Remote Vulnerabilities

Bugtraq ID:	12592
Class:	Unknown
CVE:	CVE-2005-0478 CVE-2005-0479 CVE-2005-0480 CVE-2005-0481 CVE-2005-0482
Remote:	Yes
Local:	No
Published:	Feb 18 2005 12:00AM
Updated:	Nov 27 2009 12:45AM
Credit:	Discovery of these vulnerabilities is credited to Luigi Auriemma <[email protected]>.
Vulnerable:	TrackerCam TrackerCam 5.12
Not Vulnerable:

TrackerCam Multiple Remote Vulnerabilities

TrackerCam is prone to multiple remote vulnerabilities, including buffer-overflow issues, a directory-traversal issue, an information-disclosure issue, an HTML-injection issue, and denial-of-service issues.

A remote attacker could exploit these issues to execute arbitrary code, obtain potentially sensitive information, launch phishing attacks or steal cookie based authentication credentials, and deny service to legitimate users.

TrackerCam Multiple Remote Vulnerabilities

The following examples are available:

http://www.example.com:8090/MessageBoard/messages.php?aaaaaaaaaaa[256]aaaa
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=../../../../windows/system.ini
http://www.example.com:8090/tuner/ComGetLogFile.php3?fn=Eye2005_02.log

An exploit as well as a Metasploit exploit module are available:

• /data/vulnerabilities/exploits/tcambof.zip
• /data/vulnerabilities/exploits/12592.rb

TrackerCam Multiple Remote Vulnerabilities

Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

TrackerCam Multiple Remote Vulnerabilities

References:

• TrackerCam Homepage (TrackerCam)
  
• Multiple vulnerabilities in TrackerCam 5.12 (Luigi Auriemma )