First published: Tue Jan 28 2020(Updated: )
An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK An Information Disclosure vulnerability exists due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK WCS-1100 1.02, TESCO DCS-2121 1.05_TESCO, TESCO DCS-2102 1.05_TESCO, DCS-7510 1.00, DCS-7410 1.00, DCS-6410 1.00, DCS-5635 1.01, DCS-5605 1.01, DCS-5230L 1.02, DCS-5230 1.02, DCS-3430 1.02, DCS-3411 1.02, DCS-3410 1.02, DCS-2121 1.06_FR, DCS-2121 1.06, DCS-2121 1.05_RU, DCS-2102 1.06_FR, DCS-2102 1.06, DCS-2102 1.05_RU, DCS-1130L 1.04, DCS-1130 1.04_US, DCS-1130 1.03, DCS-1100L 1.04, DCS-1100 1.04_US, and DCS-1100 1.03, which could let a malicious user obtain sensitive information. which could let a malicious user obtain sensitive information.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Dlink Dcs-3411 Firmware | =1.02 | |
Dlink Dcs-3411 | ||
Dlink Dcs-3430 Firmware | =1.02 | |
Dlink Dcs-3430 | ||
Dlink Dcs-5605 Firmware | =1.01 | |
Dlink Dcs-5605 | ||
Dlink Dcs-5635 Firmware | =1.01 | |
Dlink Dcs-5635 | ||
Dlink Dcs-1100l Firmware | =1.04 | |
Dlink Dcs-1100l | ||
Dlink Dcs-1130l Firmware | =1.04 | |
Dlink Dcs-1130l | ||
Dlink Dcs-1100 Firmware | =1.03 | |
Dlink Dcs-1100 Firmware | =1.04 | |
Dlink Dcs-1100 | ||
Dlink Dcs-1130 Firmware | =1.03 | |
Dlink Dcs-1130 Firmware | =1.04 | |
Dlink Dcs-1130 | ||
Dlink Dcs-2102 Firmware | =1.05 | |
Dlink Dcs-2102 Firmware | =1.06 | |
Dlink Dcs-2102 | ||
Dlink Dcs-2121 Firmware | =1.05 | |
Dlink Dcs-2121 Firmware | =1.06 | |
Dlink Dcs-2121 | ||
Dlink Dcs-3410 Firmware | =1.02 | |
Dlink Dcs-3410 | ||
Dlink Dcs-5230 Firmware | =1.02 | |
Dlink Dcs-5230 | ||
Dlink Dcs-5230l Firmware | =1.02 | |
Dlink Dcs-5230l | ||
Dlink Dcs-6410 Firmware | =1.00 | |
Dlink Dcs-6410 | ||
Dlink Dcs-7410 Firmware | =1.00 | |
Dlink Dcs-7410 | ||
Dlink Dcs-7510 Firmware | =1.00 | |
Dlink Dcs-7510 | ||
Dlink Wcs-1100 Firmware | =1.00 | |
Dlink Wcs-1100 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2013-1601 is an Information Disclosure vulnerability in the D-LINK lums.cgi script.
CVE-2013-1601 occurs due to a failure to restrict access on the lums.cgi script when processing a live video stream in D-LINK devices.
CVE-2013-1601 has a severity level of 5.3 (Medium).
D-LINK devices with firmware versions 1.02 and certain models are affected by CVE-2013-1601. Please refer to the CVE details for a complete list.
Yes, here are some references for CVE-2013-1601: - [http://www.securityfocus.com/bid/59570](http://www.securityfocus.com/bid/59570) - [https://exchange.xforce.ibmcloud.com/vulnerabilities/83939](https://exchange.xforce.ibmcloud.com/vulnerabilities/83939) - [https://packetstormsecurity.com/files/cve/CVE-2013-1601](https://packetstormsecurity.com/files/cve/CVE-2013-1601)