Intrusion PreventionD-Link.IP.Camera.Luminance.Information.Disclosure
Description
This indicates an attack attempt to exploit a Information Disclosure vulnerability in D-Link IP Cameras.
The vulnerability is caused by a lack of sanitizing of access to "lums.cgi". It may remote attackers to gain the ASCII output of the live video stream.
Affected Products
DCS-3411/3430 - v1.02
DCS-5605/5635 - v1.01
DCS-1100L/1130L - v1.04
DCS-1100/1130 - v1.03
DCS-1100/1130 - v1.04_US
DCS-2102/2121 - v1.05_RU
DCS-2102/2121 - v1.06
DCS-2102/2121 - v1.06_FR
TESCO DCS-2102/2121 - v1.05_TESCO
DCS-3410 - v1.02
DCS-5230 - v1.02
DCS-5230L - v1.02
DCS-6410 - v1.00
DCS-7410 - v1.00
DCS-7510 - v1.00
WCS-1100 - v1.02
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
| ID | 37748 |
| Created | Jan 23, 2014 |
| Updated | Nov 15, 2021 |
| Risk |
|
| CVE ID | CVE-2013-1601 |
| Exploit Prediction Score | 72.5% |
| Default Action | drop |
| Active | |
| Affected OS | Other |
| Affected App | Other |