Home / Early Warning / Vulnerabilidades / CVE-2013-5754

CVE-2013-5754

Type: 
Unavailable / Other
Severity: 
Critical
Publication date: 
09/17/2013
Last modified: 
09/25/2013
Description
The authorization implementation on Dahua DVR appliances accepts a hash string representing the current date for the role of a master password, which makes it easier for remote attackers to obtain administrative access and change the administrator password via requests involving (1) ActiveX, (2) a standalone client, or (3) unspecified other vectors, a different vulnerability than CVE-2013-3612.
Impact
Access Vector: Unavailable
Access Complexity: Unavailable
Authentication: Unavailable
Impact Type: Unavailable
Explanation of fields