1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Attack: DLink DCS Camera Authentication Bypass Activity

Attack: DLink DCS Camera Authentication Bypass Activity

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects the attempt to execute arbitrary commands, gain unauthorized access or to bypass intended security restrictions.

Additional Information

D-Link DCS Cameras are surveillance cameras.

D-Link DCS Cameras are prone to an authentication-bypass vulnerability due to an error in the authentication mechanism. An attacker can exploit this issue to obtain the configuration of the device remotely.

Note: On successful exploit of this issue an attacker can leverage the undocumented or 'docmd.htm' web page to execute arbitrary commands on the affected devices.

Attackers may exploit this issue to execute arbitrary commands, gain unauthorized access, or bypass intended security restrictions. Other attacks may also be possible.

Affected

  • The following versions are vulnerable:
  • DCS-930L version 1.04
  • DCS-932L version 1.02

Additional References

  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube