Intrusion Prevention

Samsung.DVR.Web.Viewer.Information.Disclosure

Description

This indicates an attack attempt against an Information Disclosure vulnerability in Samsung Web Viewer for Samsung DVR devices.
The vulnerability is caused by a lack of sanitizing of access requests to files or user-setup web pages. It allows a remote attacker to gain sensitive information from vulnerable systems via a crafted http request.

Affected Products

Samsung Web Viewer for Samsung DVR

Impact

Information Disclosure: Remote attacker can gain sensitive information from vulnerable systems.

Recommended Actions

Currently we are unaware of any vendor supplied patch for this issue.

CVE References

CVE-2013-3585