The UK Home Automation Archive

Archive Home
Group Home
Search Archive


Advanced Search

The UKHA-ARCHIVE IS CEASING OPERATIONS 31 DEC 2024


[Message Prev][Message Next][Thread Prev][Thread Next][Message Index][Thread Index]

GeoVision Vulnerabilities


  • Subject: GeoVision Vulnerabilities
  • From: "Stephen Jones" <ukha@xxxxxxxxxxxx>
  • Date: Fri, 13 May 2005 23:42:27 +0100

http://www.addict3d.org/index.php?page=viewarticle&type=security&ID=3953
..or ..
http://tinyurl.com/du98c

"....
Multiple issues have been found in GeoVision Digital Video Surveillance
System, these vulnerabilities revolve around poor authentication
mechanisms.
These issues allow sniffed authentication credentials to be reused as-is or
unscrambled to allow the discovery of the original password. In certain
configurations still pictures from security cameras can be viewed without
providing any authentication.
....

The vendor has added in version 7.0 a section known as 'Enhanced Network
Security' that suppose to help in fixing this issue, but this option is not
set by default.
"

SJ




UKHA_D Main Index | UKHA_D Thread Index | UKHA_D Home | Archives Home

Comments to the Webmaster are always welcomed, please use this contact form . Note that as this site is a mailing list archive, the Webmaster has no control over the contents of the messages. Comments about message content should be directed to the relevant mailing list.