Users login

Create an account »

JOIN XATRIX

Users login

Home » CVE Vulnerabilities » CVE-2017-5674

CVE-2017-5674 A vulnerability in a custom-built GoAhead

  • CVE ID: CVE-2017-5674
  • Vendors:
  • Date: March 13, 2017
  • Severity:
  • Impact score: 0.00
  • Exploit score: 0.00

A vulnerability in a custom-built GoAhead web server used on Foscam, Vstarcam, and multiple white-label IP camera models allows an attacker to craft a malformed HTTP ("GET system.ini HTTP/1.1nn" - note the lack of "/" in the path field of the request) request that will disclose the configuration file with the login password.

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »