Philips In.Sight CVE-2015-2884 Information Disclosure Vulnerability

Philips In.Sight is prone to an information-disclosure vulnerability.

Attackers can exploit this issue to obtain sensitive information that may aid in further attacks.

Philips In.Sight B120/37 is vulnerable.

Information

Bugtraq ID: 97683
Class: Design Error
CVE: CVE-2015-2884

Remote: Yes
Local: No
Published: Apr 09 2017 12:00AM
Updated: Apr 17 2017 04:07PM
Credit: Rapid7.
Vulnerable: Philips In.Sight B120/37 0

Not Vulnerable:

Exploit

The researcher has created a proof-of-concept to demonstrate the issue. Please see the references for more information.

References:

• Philips Homepage (Philips)
  
• #IoTsec Disclosure: 10 New Vulnerabilities for Several Video Baby Monitors (Rapid7)
  

Source: www.securityfocus.com