Intrusion Prevention

D-Link.IP.Camera.Live.Stream.Authentication.Bypass

Description

This indicates an attack attempt to exploit a Security Bypass vulnerability in D-Link IP Cameras.
This issue is caused by insufficient validation of access to the live video stream. It may allow remote attacker to view live video stream without authentication via a crafted http request.

Affected Products

DCS-2102/2121 - v1.05_RU
DCS-2102/2121 - v1.06
DCS-2102/2121 - v1.06_FR
TESCO DCS-2102/2121 - v1.05_TESCO

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

Recommended Actions

Apply the most recent upgrade or patch from the vendor.
http://www.dlink.com/us/en/support

CVE References

CVE-2013-1600