Vulnerability Description
The Linear eMerge 50 and 5000 uses a default password of eMerge for the IEIeMerge account, which makes it easier for remote attackers to obtain Video Recorder data by establishing a session to the device.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Linearcorp | Emerge 50 | All versions |
| Linearcorp | Emerge 5000 | All versions |
Related Weaknesses (CWE)
References
- http://blip.tv/file/3414004Exploit
- http://www.darkreading.com/blog/archives/2010/04/attacking_door.html
- http://www.securityinfowatch.com/Executives+Columns+%2526+Features/1316527?pageN
- http://www.slideshare.net/shawn_merdinger/we-dont-need-no-stinkin-badges-hackingExploit
- http://blip.tv/file/3414004Exploit
- http://www.darkreading.com/blog/archives/2010/04/attacking_door.html
- http://www.securityinfowatch.com/Executives+Columns+%2526+Features/1316527?pageN
- http://www.slideshare.net/shawn_merdinger/we-dont-need-no-stinkin-badges-hackingExploit
FAQ
What is CVE-2010-2469?
CVE-2010-2469 is a vulnerability with a CVSS score of 5.0 (MEDIUM). The Linear eMerge 50 and 5000 uses a default password of eMerge for the IEIeMerge account, which makes it easier for remote attackers to obtain Video Recorder data by establishing a session to the dev...
How severe is CVE-2010-2469?
CVE-2010-2469 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2010-2469?
Check the references section above for vendor advisories and patch information. Affected products include: Linearcorp Emerge 50, Linearcorp Emerge 5000.