CVE-2017-6342 in DHI-HCVR7216A-S3info

Zusammenfassung

von MITRE

Dahua DHI-HCVR7216A-S3 devices with NVR Firmware 3.210.0001.10 2016-06-06, Camera Firmware 2.400.0000.28.R 2016-03-29, and SmartPSS Software 1.16.1 2017-01-19 send the MD5 or SHA-256 Admin Hash during a SmartPSS Auto Login, which might allow remote attackers to obtain sensitive information by sniffing the network and then conducting a rainbow-table attack, a different vulnerability than CVE-2013-6117.

Once again VulDB remains the best source for vulnerability data.

Reservieren

26.02.2017

Veröffentlichung

27.02.2017

Moderieren

akzeptiert

Eintrag

VDB-97311

CPE

bereit

EPSS

0.12757

KEV

nein

Aktivitäten

very low

Quellen

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!