CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2010-4964

recorder_test.cgi on the D-Link DCS-2121 camera with firmware 1.04 allows remote attackers to execute arbitrary commands via shell metacharacters in the Password field, related to a "semicolon injection" vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.007

EPSS Ranking 71.6%

CVSS Severity

CVSS v2 Score 9.0

References

http://newsoft-tech.blogspot.com/2010/09/d-link-dcs-2121-and-state-of-embedded.html
http://www.openwall.com/lists/oss-security/2011/09/10/1
http://www.openwall.com/lists/oss-security/2011/09/14/4
http://newsoft-tech.blogspot.com/2010/09/d-link-dcs-2121-and-state-of-embedded.html
http://www.openwall.com/lists/oss-security/2011/09/10/1
http://www.openwall.com/lists/oss-security/2011/09/14/4

Products affected by CVE-2010-4964

Dlink » Dcs-2121 Firmware » Version: 1.04

cpe:2.3:a:dlink:dcs-2121_firmware:1.04
Dlink » Dcs-2121 » Version: N/A

cpe:2.3:h:dlink:dcs-2121:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2010-4964

Products

Pricing

Contact Us