Vulnerability Description
The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 sends cleartext configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by sniffing the network.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Linksys Wvc54Gc Firmware | < 1.25 |
| Cisco | Linksys Wvc54Gc | - |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/33032Broken Link
- http://www.kb.cert.org/vuls/id/528993PatchThird Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/MAPG-7HJKSAThird Party AdvisoryUS Government Resource
- http://www.linksys.com/servlet/Satellite?blobcol=urldata&blobheadername1=ContentProduct
- http://www.securityfocus.com/bid/32666Broken LinkThird Party AdvisoryVDB Entry
- http://secunia.com/advisories/33032Broken Link
- http://www.kb.cert.org/vuls/id/528993PatchThird Party AdvisoryUS Government Resource
- http://www.kb.cert.org/vuls/id/MAPG-7HJKSAThird Party AdvisoryUS Government Resource
- http://www.linksys.com/servlet/Satellite?blobcol=urldata&blobheadername1=ContentProduct
- http://www.securityfocus.com/bid/32666Broken LinkThird Party AdvisoryVDB Entry
FAQ
What is CVE-2008-4390?
CVE-2008-4390 is a vulnerability with a CVSS score of 7.5 (HIGH). The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 sends cleartext configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain...
How severe is CVE-2008-4390?
CVE-2008-4390 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2008-4390?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Linksys Wvc54Gc Firmware, Cisco Linksys Wvc54Gc.