MidnightBSD

Advisories for maygion

CVE-2013-1604 MEDIUM

Directory traversal vulnerability in MayGion IP Cameras with firmware before 2013.04.22 (05.53) allows remote attackers to read arbitrary files via a .. (dot dot) in the default URI.

CVSS 2.0

Severity: MEDIUM

Problem Type: CWE-22,

Products Affected

Vendor Product Version
maygion ip_camera_firmware 6.1
maygion ip_camera_firmware 05.59
maygion ip_camera_firmware 05.60
maygion ip_camera_firmware 05.49
maygion ip_camera_firmware 05.53
maygion ip_camera_firmware *
maygion ip_camera_firmware 6.2
maygion ip_camera_firmware 6.0
CVE-2013-1605 HIGH

Buffer overflow in MayGion IP Cameras with firmware before 2013.04.22 (05.53) allows remote attackers to execute arbitrary code via a long filename in a GET request.

CVSS 2.0

Severity: HIGH

Problem Type: CWE-119,

Products Affected

Vendor Product Version
maygion ip_camera_firmware 6.1
maygion ip_camera_firmware 05.59
maygion ip_camera_firmware 05.60
maygion ip_camera_firmware 05.49
maygion ip_camera_firmware 05.53
maygion ip_camera_firmware *
maygion ip_camera_firmware 6.2
maygion ip_camera_firmware 6.0