CVSS: 5.0EPSS: 4%CPEs: 3EXPL: 3CVE-2005-1552 – GeoVision Digital Surveillance System 6.0 4/6.1 - Unauthorized '.JPEG' Image Access
https://notcve.org/view.php?id=CVE-2005-1552
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0, when set to create JPEG images, does not properly protect an image even when a password and username is assigned, which may allow remote attackers to gain sensitive information via a direct request to the image. • https://www.exploit-db.com/exploits/25643 http://marc.info/?l=bugtraq&m=111574131105737&w=2 http://secunia.com/advisories/15330 http://www.esqo.com/research/advisories/2005/100505-1.txt http://www.osvdb.org/16340 http://www.securityfocus.com/bid/13571 https://exchange.xforce.ibmcloud.com/vulnerabilities/20537 •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 1CVE-2005-1553
https://notcve.org/view.php?id=CVE-2005-1553
GeoVision Digital Video Surveillance System 6.04, 6.1 and 7.0 uses a weak encryption scheme to encrypt passwords, which allows remote attackers to obtain the password via sniffing. • http://marc.info/?l=bugtraq&m=111574131105737&w=2 http://www.esqo.com/research/advisories/2005/100505-1.txt http://www.osvdb.org/16341 https://exchange.xforce.ibmcloud.com/vulnerabilities/20538 •