Published: 03/03/2014 Updated: 29/08/2017

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Buffer overflow in the RTSP Packet Handler in Hikvision DS-2CD7153-E IP camera with firmware 4.1.0 b130111 (Jan 2013), and possibly other devices, allows remote malicious users to cause a denial of service (device crash and reboot) and possibly execute arbitrary code via a long string in the Range header field in an RTSP transaction.

Vulnerable Product	Search on Vulmon	Subscribe to Product
hikvision ds-2cd7153-e_firmware 4.1.0_b130111
hikvision ds-2cd7153-e -

Core Security - Corelabs Advisory corelabscoresecuritycom/ Hikvision IP Cameras Multiple Vulnerabilities 1 *Advisory Information* Title: Hikvision IP Cameras Multiple Vulnerabilities Advisory ID: CORE-2013-0708 Advisory URL: wwwcoresecuritycom/advisories/hikvision-ip-cameras-multiple-vulnerabilities Date published: 2013-08-06 ...

Core Security Technologies Advisory - Hikvision IP Cameras suffer from buffer overflow, authentication bypass, hard-coded credential, and privilege escalation vulnerabilities ...

HACKERS can DELETE SURVEILLANCE DVRS remotely – report

The Register • John Leyden • 21 Nov 2014

Hikvision devices wide open to hacking, claim securobods

Updated DVR systems from Hikvision have vulnerabilities that open the door to hacking, security researchers have warned. Digital Video Recorders (AKA Network Video Recorders), such as those from the likes of Hikvision, are used to record surveillance footage of office buildings and surrounding areas. However, the range of vulnerabilities in Hikvision's kit create a means to remotely delete recorded footage, an attack that defeats the purpose Hikvision security cameras. Compromised DVR systems mi...

CVE-2013-4977

Vulnerability Summary

Exploits

Recent Articles

References

Vulmon Search

About

Products

Connect