Goby/json/DLINK-rtpd.cgi-Command-Inje...

{
  "Name": "DLINK rtpd.cgi Command Injection (CVE-2013-1599)",
  "Description": "A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP Cameras DCS-3411/3430 firmware 1.02, DCS-5605/5635 1.01, DCS-1100L/1130L 1.04, DCS-1100/1130 1.03, DCS-1100/1130 1.04_US, DCS-2102/2121 1.05_RU, DCS-3410 1.02, DCS-5230 1.02, DCS-5230L 1.02, DCS-6410 1.00, DCS-7410 1.00, DCS-7510 1.00, and WCS-1100 1.02, which could let a remote malicious user execute arbitrary commands through the camera's web interface. ",
  "Product": "D_Link-DCS-IP-camera",
  "Homepage": "http://www.dlink.com.cn/",
  "DisclosureDate": "2021-06-03",
  "Author": "atdpa4sw0rd@gmail.com",
  "GobyQuery": "(server==\"dcs-lig-httpd\" || app=\"D_Link-DCS-IP-camera\")",
  "Level": "3",
  "Impact": "<p>An unauthenticated remote attacker can execute arbitrary commands on the affected device through the camera's web interface, causing the device to be controlled.<br></p>",
  "Recommendation": "<p>Search the official website for the model to upgrade the corresponding firmware:<a href=\"https://support.dlink.com/\" target=\"_blank\">https://support.dlink.com/</a><br></p>",
  "References": [
    "http://www.exploit-db.com/exploits/25138",
    "http://www.securityfocus.com/bid/59564",
    "https://exchange.xforce.ibmcloud.com/vulnerabilities/83941",
    "https://packetstormsecurity.com/files/cve/CVE-2013-1599",
    "https://seclists.org/fulldisclosure/2013/Apr/253",
    "https://www.coresecurity.com/advisories/d-link-ip-cameras-multiple-vulnerabilities",
    "https://nvd.nist.gov/vuln/detail/CVE-2013-1599",
    "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1599"
  ],
  "HasExp": true,
  "ExpParams": [
    {
      "name": "cmd",
      "type": "input",
      "value": "cat /etc/shadow"
    }
  ],
  "ExpTips": {
    "Type": "",
    "Content": ""
  },
  "ScanSteps": null,
  "ExploitSteps": null,
  "Tags": [
    "RCE"
  ],
  "CVEIDs": [
    "CVE-2013-1599"
  ],
  "CVSSScore": "9.8",
  "AttackSurfaces": {
    "Application": null,
    "Support": null,
    "Service": null,
    "System": null,
    "Hardware": null
  }
}
auto 2022-11-25 02:08:58 -08:00			`{`
			`"Name": "DLINK rtpd.cgi Command Injection (CVE-2013-1599)",`
			`"Description": "A Command Injection vulnerability exists in the /var/www/cgi-bin/rtpd.cgi script in D-Link IP Cameras DCS-3411/3430 firmware 1.02, DCS-5605/5635 1.01, DCS-1100L/1130L 1.04, DCS-1100/1130 1.03, DCS-1100/1130 1.04_US, DCS-2102/2121 1.05_RU, DCS-3410 1.02, DCS-5230 1.02, DCS-5230L 1.02, DCS-6410 1.00, DCS-7410 1.00, DCS-7510 1.00, and WCS-1100 1.02, which could let a remote malicious user execute arbitrary commands through the camera's web interface. ",`
			`"Product": "D_Link-DCS-IP-camera",`
			`"Homepage": "http://www.dlink.com.cn/",`
			`"DisclosureDate": "2021-06-03",`
			`"Author": "atdpa4sw0rd@gmail.com",`
			`"GobyQuery": "(server==\"dcs-lig-httpd\" \|\| app=\"D_Link-DCS-IP-camera\")",`
			`"Level": "3",`
			`"Impact": "<p>An unauthenticated remote attacker can execute arbitrary commands on the affected device through the camera's web interface, causing the device to be controlled.<br></p>",`
			`"Recommendation": "<p>Search the official website for the model to upgrade the corresponding firmware:<a href=\"https://support.dlink.com/\" target=\"_blank\">https://support.dlink.com/</a><br></p>",`
			`"References": [`
			`"http://www.exploit-db.com/exploits/25138",`
			`"http://www.securityfocus.com/bid/59564",`
			`"https://exchange.xforce.ibmcloud.com/vulnerabilities/83941",`
			`"https://packetstormsecurity.com/files/cve/CVE-2013-1599",`
			`"https://seclists.org/fulldisclosure/2013/Apr/253",`
			`"https://www.coresecurity.com/advisories/d-link-ip-cameras-multiple-vulnerabilities",`
			`"https://nvd.nist.gov/vuln/detail/CVE-2013-1599",`
			`"https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1599"`
			`],`
			`"HasExp": true,`
			`"ExpParams": [`
			`{`
			`"name": "cmd",`
			`"type": "input",`
			`"value": "cat /etc/shadow"`
			`}`
			`],`
			`"ExpTips": {`
			`"Type": "",`
			`"Content": ""`
			`},`
			`"ScanSteps": null,`
			`"ExploitSteps": null,`
			`"Tags": [`
			`"RCE"`
			`],`
			`"CVEIDs": [`
			`"CVE-2013-1599"`
			`],`
			`"CVSSScore": "9.8",`
			`"AttackSurfaces": {`
			`"Application": null,`
			`"Support": null,`
			`"Service": null,`
			`"System": null,`
			`"Hardware": null`
			`}`
			`}`