CVE-2005-1552
GeoVision Digital Video Surveillance System <7.0 - Info Disclosure
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2005-1552. PoCs published by Tirath Rai.
AI-analyzed exploit summary The exploit describes an access validation error in GeoVision Digital Surveillance System versions 6.04 or 6.1, allowing unauthorized remote attackers to view JPEG images stored on the server by directly accessing URLs like cam1.jpg.
Description
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0, when set to create JPEG images, does not properly protect an image even when a password and username is assigned, which may allow remote attackers to gain sensitive information via a direct request to the image.
Exploits (1)
The exploit describes an access validation error in GeoVision Digital Surveillance System versions 6.04 or 6.1, allowing unauthorized remote attackers to view JPEG images stored on the server by directly accessing URLs like cam1.jpg.