Vulnerability Details CVE-2005-1552
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0, when set to create JPEG images, does not properly protect an image even when a password and username is assigned, which may allow remote attackers to gain sensitive information via a direct request to the image.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.05
EPSS Ranking 89.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=111574131105737&w=2
- http://secunia.com/advisories/15330
- http://www.esqo.com/research/advisories/2005/100505-1.txt
- http://www.osvdb.org/16340
- http://www.securityfocus.com/bid/13571
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20537
- http://marc.info/?l=bugtraq&m=111574131105737&w=2
- http://secunia.com/advisories/15330
- http://www.esqo.com/research/advisories/2005/100505-1.txt
- http://www.osvdb.org/16340
- http://www.securityfocus.com/bid/13571
- https://exchange.xforce.ibmcloud.com/vulnerabilities/20537
Products affected by CVE-2005-1552
-
cpe:2.3:h:geovision:digital_surveillance_system:6.0.4
-
cpe:2.3:h:geovision:digital_surveillance_system:6.1
-
cpe:2.3:h:geovision:digital_surveillance_system:7.0