Trackercam » Trackercam : Security Vulnerabilities, CVEs, CVSS score >= 4
TrackerCam 5.12 and earlier allows remote attackers to cause a denial of service (crash) via (1) a large number of connections with a negative Content-Length header, possibly triggering an integer signedness error, or (2) a large amount of data.
Max CVSS
5.0
EPSS Score
1.10%
Published
2005-03-30
Updated
2017-07-11
TrackerCam 5.12 and earlier allows remote attackers to read log files via the fn parameter in a direct request to the ComGetLogFile.php3 script.
Max CVSS
5.0
EPSS Score
1.11%
Published
2005-03-30
Updated
2017-07-11
Cross-site scripting (XSS) vulnerability in TrackerCam 5.12 and earlier allows remote attackers to inject arbitrary HTML or web script via the login request, which is recorded in a log file but not properly handled when the administrator views the log file.
Max CVSS
4.3
EPSS Score
0.54%
Published
2005-03-30
Updated
2017-07-11
Directory traversal vulnerability in ComGetLogFile.php3 for TrackerCam 5.12 and earlier allows remote attackers to read arbitrary files via ".." sequences and (1) "/" slash), (2) "\" (backslash), or (3) hex-encoded characters in the fn parameter.
Max CVSS
5.0
EPSS Score
6.05%
Published
2005-03-30
Updated
2017-07-11
CVE-2005-0478
Public exploit
Multiple buffer overflows in TrackerCam 5.12 and earlier allow remote attackers to cause a denial of service and possibly execute arbitrary code via (1) an HTTP request with a long User-Agent header or (2) a long argument to an arbitrary PHP script.
Max CVSS
5.0
EPSS Score
26.05%
Published
2005-03-30
Updated
2017-07-11
5 vulnerabilities found