TrackerCam Multiple Remote Vulnerabilities

TrackerCam Multiple Remote Vulnerabilities

TrackerCam is reported prone to multiple vulnerabilities. The following individual issues are reported:

A remote buffer overrun vulnerability is reported to affect the TrackerCam HTTP server.

A remote attacker may potentially exploit this vulnerability to execute arbitrary code in the context of a vulnerable TrackerCam HTTP service.

Another remote buffer overrun vulnerability is reported to affect the TrackerCam service. The issue is reported to exist due to a lack of sufficient boundary checks performed on any argument passed to the TrackerCam PHP scripts.

A remote attacker may potentially exploit this vulnerability to execute arbitrary code in the context of a vulnerable TrackerCam HTTP service.

TrackerCam is reported prone to a directory traversal vulnerability. This issue is reported to exist in the 'ComGetLogFile.php3' script.

A remote attacker may exploit this vulnerability to reveal the contents of web server readable files.

The 'ComGetLogFile.php3' script of TrackerCam is also reported prone to an installation path disclosure vulnerability.

Additionally, the 'ComGetLogFile.php3' script may be leveraged to view potentially sensitive information that is contained in TrackerCam log files.

TrackerCam is reported prone to a HTML injection vulnerability. It is reported that the username and password fields are not correctly sanitized of HTML content.

A remote attacker may exploit this vulnerability to launch phishing style attacks or steal cookie based authentication credentials.

Finally, the TrackerCam HTTP service is reported prone to multiple remote denial of service vulnerabilities.

A remote attacker may exploit these vulnerabilities to deny service to legitimate users.