A Command Injection vulnerability exists in Vivotek PT7135 IP Cameras 0300a and 0400a via the system.ntp parameter to the farseer.out binary file, which cold let a malicious user execute arbitrary code.
Software | From | Fixed in |
---|---|---|
vivotek / pt7135_firmware | 0300a | 0300a.x |
vivotek / pt7135_firmware | 0400a | 0400a.x |