Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: LIAD Mizrachi (liadmzgmail.com)
Date: Thu Nov 07 2013 - 02:56:59 CST
Advisory: FOSCAM Wireless IP Camera - SSID XSS
Author: Liad Mizrachi
Vendor URL: http://www.foscam.com/
Vulnerability Status: No Fix
FOSCAM's Web UI "WiFi scan" option is vulnerable to XSS using a custom AP SSID.
- SSID must start with ' (Apostrophe).
- SSID must end with // (comment).
20-Aug-2013 - Vendor informed by mail
21-Aug-2013 - Reply from FosCam Support, moved to R&D team.
08-Sep-2013 - Requesting the vendor for update on the issue.
08-Sep-2013 - Reply From Vendor: no fix will be issue.
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/