CVE-2013-1602: Infoleak
First published: Tue Jan 28 2020(Updated: )
An Information Disclosure vulnerability exists due to insufficient validation of authentication cookies for the RTSP session in D-Link DCS-5635 1.01, DCS-1100L 1.04, DCS-1130L 1.04, DCS-1100 1.03/1.04_US, DCS-1130 1.03/1.04_US , DCS-2102 1.05_RU/1.06/1.06_FR/1.05_TESCO, DCS-2121 1.05_RU/1.06/1.06_FR/1.05_TESCO, DCS-3410 1.02, DCS-5230 1.02, DCS-5230L 1.02, DCS-6410 1.0, DCS-7410 1.0, DCS-7510 1.0, and WCS-1100 1.02, which could let a malicious user obtain unauthorized access to video streams.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| D-Link DCS-3411 Firmware | =1.02 | |
| D-Link DCS-3411 Firmware | ||
| D-Link DCS-3430 firmware | =1.02 | |
| D-Link DCS-3430 firmware | ||
| dlink DCS-5605 firmware | =1.01 | |
| D-Link DCS-5605 PTZ IP Network Camera | ||
| dlink DCS-5635 firmware | =1.01 | |
| dlink DCS-5635 | ||
| D-Link DCS-1100L | =1.04 | |
| D-Link DCS-1100L | ||
| dlink DCS-1130L | =1.04 | |
| D-Link DCS-1130L | ||
| D-Link DCS-1100 | =1.03 | |
| D-Link DCS-1100 | =1.04 | |
| D-Link DCS-1100 | ||
| Dlink DCS-1130 firmware | =1.03 | |
| Dlink DCS-1130 firmware | =1.04 | |
| Dlink DCS-1130 firmware | ||
| D-Link DCS-2102 Firmware | =1.05 | |
| D-Link DCS-2102 Firmware | =1.06 | |
| D-Link DCS-2102 | ||
| dlink DCS-2121 firmware | =1.05 | |
| dlink DCS-2121 firmware | =1.06 | |
| dlink DCS-2121 firmware | ||
| dlink DCS-3410 firmware | =1.02 | |
| dlink DCS-3410 firmware | ||
| dlink DCS-5230L firmware | =1.02 | |
| D-Link DCS-5230 | ||
| dlink DCS-5230L firmware | =1.02 | |
| D-Link DCS-5230L | ||
| dlink DCS-6410 firmware | =1.00 | |
| D-Link DCS-6410 | ||
| Dlink DCS-7410 Firmware | =1.00 | |
| dlink DCS-7410 firmware | ||
| D-Link DCS-7510 Firmware | =1.00 | |
| D-Link DCS-7510 Firmware | ||
| D-Link WCS-1100 | =1.00 | |
| dlink WCS-1100 firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2013-1602?
CVE-2013-1602 is an Information Disclosure vulnerability in D-Link DCS-5635, DCS-1100L, DCS-1130L, DCS-1100, DCS-1130, DCS-2102, DCS-2121, and other models.
How severe is CVE-2013-1602?
CVE-2013-1602 has a severity rating of 7.5 (High).
What is the impact of CVE-2013-1602?
CVE-2013-1602 allows attackers to gain sensitive information by exploiting insufficient authentication cookie validation in the RTSP session.
Which D-Link products are affected by CVE-2013-1602?
D-Link DCS-5635, DCS-1100L, DCS-1130L, DCS-1100, DCS-1130, DCS-2102, DCS-2121, and other models are affected by CVE-2013-1602.
How can I fix or mitigate CVE-2013-1602?
To fix CVE-2013-1602, update to the latest firmware version provided by D-Link.
- agent/references
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/description
- agent/weakness
- agent/severity
- agent/author
- agent/event
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/dlink
- canonical/d-link dcs-3411 firmware
- version/d-link dcs-3411 firmware/1.02
- canonical/d-link dcs-3430 firmware
- version/d-link dcs-3430 firmware/1.02
- canonical/dlink dcs-5605 firmware
- version/dlink dcs-5605 firmware/1.01
- canonical/d-link dcs-5605 ptz ip network camera
- canonical/dlink dcs-5635 firmware
- version/dlink dcs-5635 firmware/1.01
- canonical/dlink dcs-5635
- canonical/d-link dcs-1100l
- version/d-link dcs-1100l/1.04
- canonical/dlink dcs-1130l
- version/dlink dcs-1130l/1.04
- canonical/d-link dcs-1130l
- canonical/d-link dcs-1100
- version/d-link dcs-1100/1.03
- version/d-link dcs-1100/1.04
- canonical/dlink dcs-1130 firmware
- version/dlink dcs-1130 firmware/1.03
- version/dlink dcs-1130 firmware/1.04
- canonical/d-link dcs-2102 firmware
- version/d-link dcs-2102 firmware/1.05
- version/d-link dcs-2102 firmware/1.06
- canonical/d-link dcs-2102
- canonical/dlink dcs-2121 firmware
- version/dlink dcs-2121 firmware/1.05
- version/dlink dcs-2121 firmware/1.06
- canonical/dlink dcs-3410 firmware
- version/dlink dcs-3410 firmware/1.02
- canonical/dlink dcs-5230l firmware
- version/dlink dcs-5230l firmware/1.02
- canonical/d-link dcs-5230
- canonical/d-link dcs-5230l
- canonical/dlink dcs-6410 firmware
- version/dlink dcs-6410 firmware/1.00
- canonical/d-link dcs-6410
- canonical/dlink dcs-7410 firmware
- version/dlink dcs-7410 firmware/1.00
- canonical/d-link dcs-7510 firmware
- version/d-link dcs-7510 firmware/1.00
- canonical/d-link wcs-1100
- version/d-link wcs-1100/1.00
- canonical/dlink wcs-1100 firmware