CVE-2013-3543 : The AXIS Media Control (AMC) ActiveX control (AxisMediaControlEmb.dll) 6.2.10.11 for AXIS network cameras allows remote

The AXIS Media Control (AMC) ActiveX control (AxisMediaControlEmb.dll) 6.2.10.11 for AXIS network cameras allows remote attackers to create or overwrite arbitrary files via a file path to the (1) StartRecord, (2) SaveCurrentImage, or (3) StartRecordMedia methods.

Published 2013-10-04 23:55:04

Updated 2013-10-07 16:17:31

Source MITRE

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2013-3543

Probability of exploitation activity in the next 30 days: 1.55%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 87 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2013-3543

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
8.8	HIGH	AV:N/AC:M/Au:N/C:N/I:C/A:C	8.6	9.2	NIST
Access Vector: Network Access Complexity: Medium Authentication: None Confidentiality Impact: None Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2013-3543

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2013-3543

http://seclists.org/fulldisclosure/2013/Jun/84

Full Disclosure: Security Analysis of IP video surveillance cameras
Exploit

CVEs referencing this url

Products affected by CVE-2013-3543

Axis » Media Control Activex Control » Version: 6.2.10.11
cpe:2.3:a:axis:media_control_activex_control:6.2.10.11:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2013-3543

Exploit prediction scoring system (EPSS) score for CVE-2013-3543

CVSS scores for CVE-2013-3543

CWE ids for CVE-2013-3543

References for CVE-2013-3543

Products affected by CVE-2013-3543