Intrusion Prevention

VIVOTEK.Network.Cameras.Information.Disclosure

Description

This indicates an attack attempt to exploit an Information Disclosure Vulnerability in VIVOTEK Network Cameras.
The vulnerability is due to an error in the vulnerable application when handling a maliciously crafted request. An attacker can exploit this to access arbitrary files on the affected machine via a crafted request.

Affected Products

VIVOTEK Network Camera with firmware IB8369-VVTK-0102A
VIVOTEK Network Camera with firmware FD8164-VVTK-0200B
VIVOTEK Network Camera with firmware FD816BA-VVTK-010101

Impact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

CVE References

CVE-2017-9829