Skip to main content

Multiple Vulnerabilities in the Cisco Video Surveillance Manager



Summary

  • The Cisco Video Surveillance Manager (VSM) allows operations managers and system integrators to build customized video surveillance networks to meet their needs. Cisco VSM provides centralized configuration, management, display, and control of video from Cisco and third-party surveillance endpoints. Multiple security vulnerabilities exist in versions of Cisco VSM prior to 7.0.0, which may allow an attacker to gain full administrative privileges on the system.

    More information on Cisco VSM can be found at http://www.cisco.com/en/US/products/ps10818/index.html.

    Cisco has released software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available.

    This advisory is available at the following link: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130724-vsm

Affected Products

  • Vulnerable Products

    Cisco VSM versions prior to 7.0.0 are affected by the vulnerabilities disclosed in this advisory.

    Products Confirmed Not Vulnerable

    No other Cisco products are currently known to be affected by these vulnerabilities.

Details

  • Cisco VSM is affected by the following classification vulnerabilities:
      Information Disclosure Through Directory Traversal
      Cisco VSM does not properly validate user input to a number of pages, which may be used to gain access to sensitive system files. An unauthenticated, remote attacker may use a crafted URL to access sensitive system files. This vulnerability is documented in Cisco bug ID: CSCsv37163 (registered customers only) and has been assigned the Common Vulnerabilities Enumerator (CVE) ID: CVE-2013-3429.

      Insufficient Authentication to Sensitive Information
      Cisco VSM does not require authentication to access potentially sensitive information such as configuration, monitoring pages archives, and system logs. An unauthenticated, remote attacker may exploit these vulnerabilities to create, modify and remove camera feeds, archives, logs and users. These vulnerabilities are documented in Cisco bug IDs: CSCsv37288(registered customers only) and CSCsv40169 (registered customers only) and has been assigned the CVE IDs: CVE-2013-3430 and CVE-2013-3431.

Workarounds

  • The vulnerabilities described in this document can be mitigated or remediated by following the suggestions in the guide Securing Cisco Video Surveillance Manager Release 6.x: Best Practices and Recommendations and removing the Broadware sample code.

    The Broadware package name differs by the version of Cisco VSM and can be removed by issuing the command:
    rpm -e [package.rpm]
    The following example shows Cisco VSM software version 6.3.2(20) with the removal command:
    # rpm -qa | grep -i Cisco_VSBWT
Cisco_VSBWT-6.3.2-20


# rpm -e Cisco_VSBWT-6.3.2-20

Fixed Software

  • Customers are encouraged to follow the suggestions in the Securing Cisco Video Surveillance Manager Release 6.x: Best Practices and Recommendations or upgrade to Cisco VSM version 7.0.1.
     
    Cisco VSM 7.0 and Cisco VSM 7.0.1 releases are available to replace previous versions of Cisco VSM. Contact your Cisco representative for more information on how to obtain VSM 7.0 or 7.0.1 software and for assistance in updating from previous versions of Cisco VSM. When considering software upgrades, customers are advised to consult the Cisco Security Advisories, Responses, and Notices archive at http://www.cisco.com/go/psirt and review subsequent advisories to determine exposure and a complete upgrade solution. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.

Exploitation and Public Announcements

URL

Revision History

  • Revision 1.02013-July-24Initial public release

Comments

Post a Comment

Popular posts from this blog

Applications and Threats Content Release Notes

  Threat Intelligence Report Top Attacks and Breaches The biochemical systems at an Oxford university research lab currently studying the Covid-19 pandemic has been  breached . Clinical research was not affected by the incident. Breached systems include machines used to prepare biochemical samples, and hackers are currently attempting to  sell  their access to those machines. Twitter has permanently  suspended  multiple accounts found to be part of four disinformation campaign networks, most likely operated by state-sponsored actors associated with Iran, Russia and Armenia. The Iranian infrastructure was previously used to disrupt the 2020 US presidential campaign discourse. Gmail accounts of global pro-Tibet organizations have been  targeted  by the Chinese APT TA413, an espionage group known for its operations against civil dissidents. The campaign leverages a customized malicious Mozilla Firefox browser extension to gain control over the victims’ Gmail accounts. Npower, a British ga
Post a Comment
Read more

Cisco Releases Security Updates for Cisco ASA 5506-X, 5508-X, 5516-X and Firepower// Cisco Bug IDs: CSCvp36425

A vulnerability in the cryptographic driver for Cisco Adaptive Security Appliance Software (ASA) and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause the device to reboot unexpectedly. The vulnerability is due to incomplete input validation of a Secure Sockets Layer (SSL) or Transport Layer Security (TLS) ingress packet header. An attacker could exploit this vulnerability by sending a crafted TLS/SSL packet to an interface on the targeted device. An exploit could allow the attacker to cause the device to reload, which will result in a denial of service (DoS) condition. Note:  Only traffic directed to the affected system can be used to exploit this vulnerability. This vulnerability affects systems configured in routed and transparent firewall mode and in single or multiple context mode. This vulnerability can be triggered by IPv4 and IPv6 traffic. A valid SSL or TLS session is required to exploit this vulnerability. Cisco has rel
Post a Comment
Read more

Site-to-site IPsec VPN with two FortiGates

In this example, you will allow transparent communication between two networks that are located behind different FortiGates at different offices using route-based IPsec VPN. The VPN will be created on both FortiGates by using the VPN Wizard's   Site to Site - FortiGate   template. In this example, one office will be referred to as HQ and the other will be referred to as Branch. 1. Configuring the HQ IPsec VPN On the HQ FortiGate, go to  VPN > IPsec Wizard . Select the  Site to Site  template, and select  FortiGate . In the  Authentication  step, set  IP Address  to the IP of the Branch FortiGate (in the example,  172.20.120.135 ). After you enter the gateway, an available interface will be assigned as the  Outgoing Interface . If you wish to use a different interface, select it from the drop-down menu. Set a secure  Pre-shared Key . In the  Policy & Routing  step, set the  Local Interface . The  Local Subnets  will be added automatically. Set  Remote
Post a Comment
Read more