EXPLOITDB-EDB-25138

EXPLOITDB text VERIFIED WRITEUP
Exploit for CVE-2013-1603 - Dlink Dcs-3411 Firmware - Hard-coded Credentials
AI Analysis

This is a detailed advisory from Core Security describing multiple vulnerabilities in D-Link IP cameras, including command injection (CVE-2013-1599), authentication bypass (CVE-2013-1600, CVE-2013-1602), and information leaks (CVE-2013-1601, CVE-2013-1603). It includes technical descriptions and proof-of-concept examples for each vulnerability.

Attack Type
RCE | auth_bypass | info_leak
Complexity
trivial
Reliability
reliable
MITRE ATT&CK
T1190 - Exploit Public-Facing Application T1078 - Valid Accounts T1083 - File and Directory Discovery
Loading exploit code...
Download ZIP Password: eip
Source
Platform Exploitdb
Type webapps
Platform hardware
Language text
Files 1
Authors
Core Security Nahuel Riva Francisco Falcon Martin Rocha Pablo Santamaria Fernando Miranda Juan Cotta
Vulnerability
CVE-2013-1603
Dlink Dcs-3411 Firmware - Hard-coded Credentials
MEDIUM
CVSS 5.3