Darkwet: >> Webcam Xp >> 1.02.432 Security Vulnerabilities
Multiple array index errors in the HTTP server in Darkwet Network webcamXP 3.72.440.0 and earlier and beta 4.05.280 and earlier allow remote attackers to cause a denial of service (device crash) and read portions of memory via (1) an invalid camnum parameter to the pocketpc component and (2) an invalid id parameter to the show_gallery_pic component.
CVSS Score
9.4
EPSS Score
0.223
Published
2008-12-19
Cross-site scripting (XSS) vulnerability in webcamXP 1.02.432 and 1.02.535 allows remote attackers to inject arbitrary web script or HTML via the message field.
CVSS Score
4.3
EPSS Score
0.003
Published
2003-12-31