CVE-2013-1601: Infoleak
First published: Tue Jan 28 2020(Updated: )
An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK WCS-1100 1.02, TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-7510 1.00, DCS-7410 1.00, DCS-6410 1.00, DCS-5635 1.01, DCS-5605 1.01, DCS-5230L 1.02, DCS-5230 1.02, DCS-3430 1.02, DCS-3411 1.02, DCS-3410 1.02, DCS-2121 1.06_FR, DCS-2121 1.06, DCS-2121 1.05_RU, DCS-2102 1.06_FR, DCS-2102 1.06, DCS-2102 1.05_RU, DCS-1130L 1.04, DCS-1130 1.04_US, DCS-1130 1.03, DCS-1100L 1.04, DCS-1100 1.04_US, and DCS-1100 1.03, which could let a malicious user obtain sensitive information. which could let a malicious user obtain sensitive information.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| D-Link DCS-3411 Firmware | =1.02 | |
| D-Link DCS-3411 Firmware | ||
| D-Link DCS-3430 firmware | =1.02 | |
| D-Link DCS-3430 firmware | ||
| dlink DCS-5605 firmware | =1.01 | |
| dlink DCS-5605 firmware | ||
| dlink DCS-5635 firmware | =1.01 | |
| dlink DCS-5635 | ||
| dlink DCS-1100L firmware | =1.04 | |
| dlink DCS-1100L | ||
| dlink DCS-1130L | =1.04 | |
| dlink DCS-1130L | ||
| Dlink DCS-1100 firmware | =1.03 | |
| Dlink DCS-1100 firmware | =1.04 | |
| D-Link DCS-1100 | ||
| Dlink DCS-1130 firmware | =1.03 | |
| Dlink DCS-1130 firmware | =1.04 | |
| Dlink DCS-1130 firmware | ||
| D-Link DCS-2102 Firmware | =1.05 | |
| D-Link DCS-2102 Firmware | =1.06 | |
| D-Link DCS-2102 | ||
| dlink DCS-2121 firmware | =1.05 | |
| dlink DCS-2121 firmware | =1.06 | |
| dlink DCS-2121 firmware | ||
| dlink DCS-3410 firmware | =1.02 | |
| dlink DCS-3410 firmware | ||
| dlink DCS-5230L firmware | =1.02 | |
| D-Link DCS-5230 | ||
| dlink DCS-5230L firmware | =1.02 | |
| D-Link DCS-5230L | ||
| dlink DCS-6410 firmware | =1.00 | |
| dlink DCS-6410 | ||
| dlink DCS-7410 firmware | =1.00 | |
| dlink DCS-7410 firmware | ||
| D-Link DCS-7510 Firmware | =1.00 | |
| D-Link DCS-7510 Firmware | ||
| dlink WCS-1100 firmware | =1.00 | |
| dlink WCS-1100 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2013-1601?
CVE-2013-1601 is an Information Disclosure vulnerability in the D-LINK lums.cgi script.
How does CVE-2013-1601 vulnerability occur?
CVE-2013-1601 occurs due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK devices.
What is the severity of CVE-2013-1601?
CVE-2013-1601 has a severity level of 5.3 (Medium).
Which software is affected by CVE-2013-1601?
D-LINK devices with firmware versions 1.02 and certain models are affected by CVE-2013-1601. Please refer to the CVE details for a complete list.
Are there any references for CVE-2013-1601?
Yes, here are some references for CVE-2013-1601: - [http://www.securityfocus.com/bid/59570](http://www.securityfocus.com/bid/59570) - [https://exchange.xforce.ibmcloud.com/vulnerabilities/83939](https://exchange.xforce.ibmcloud.com/vulnerabilities/83939) - [https://packetstormsecurity.com/files/cve/CVE-2013-1601](https://packetstormsecurity.com/files/cve/CVE-2013-1601)
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/description
- agent/references
- agent/weakness
- agent/severity
- agent/author
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dlink
- canonical/d-link dcs-3411 firmware
- version/d-link dcs-3411 firmware/1.02
- canonical/d-link dcs-3430 firmware
- version/d-link dcs-3430 firmware/1.02
- canonical/dlink dcs-5605 firmware
- version/dlink dcs-5605 firmware/1.01
- canonical/dlink dcs-5635 firmware
- version/dlink dcs-5635 firmware/1.01
- canonical/dlink dcs-5635
- canonical/dlink dcs-1100l firmware
- version/dlink dcs-1100l firmware/1.04
- canonical/dlink dcs-1100l
- canonical/dlink dcs-1130l
- version/dlink dcs-1130l/1.04
- canonical/dlink dcs-1100 firmware
- version/dlink dcs-1100 firmware/1.03
- version/dlink dcs-1100 firmware/1.04
- canonical/d-link dcs-1100
- canonical/dlink dcs-1130 firmware
- version/dlink dcs-1130 firmware/1.03
- version/dlink dcs-1130 firmware/1.04
- canonical/d-link dcs-2102 firmware
- version/d-link dcs-2102 firmware/1.05
- version/d-link dcs-2102 firmware/1.06
- canonical/d-link dcs-2102
- canonical/dlink dcs-2121 firmware
- version/dlink dcs-2121 firmware/1.05
- version/dlink dcs-2121 firmware/1.06
- canonical/dlink dcs-3410 firmware
- version/dlink dcs-3410 firmware/1.02
- canonical/dlink dcs-5230l firmware
- version/dlink dcs-5230l firmware/1.02
- canonical/d-link dcs-5230
- canonical/d-link dcs-5230l
- canonical/dlink dcs-6410 firmware
- version/dlink dcs-6410 firmware/1.00
- canonical/dlink dcs-6410
- canonical/dlink dcs-7410 firmware
- version/dlink dcs-7410 firmware/1.00
- canonical/d-link dcs-7510 firmware
- version/d-link dcs-7510 firmware/1.00
- canonical/dlink wcs-1100 firmware
- version/dlink wcs-1100 firmware/1.00