Vulnerabilities > CVE-2016-3149 - Unspecified vulnerability in Barco products

CVSS 9.8 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

HIGH

Availability impact

HIGH

network

low complexity

barco

critical

NVD

Published: 2017-01-12

Updated: 2018-10-09

Summary

Barco ClickShare CSC-1 devices with firmware before 01.09.03 and CSM-1 devices with firmware before 01.06.02 allow remote attackers to execute arbitrary code via unspecified vectors.

Vulnerable Configurations

Part	Description	Count
OS	Barco Barco Clickshare CSC 1 Firmware 01.09.02.03 Barco Clickshare CSM 1 Firmware 01.06.01.04	2
Hardware	Barco Barco Clickshare CSC 1 - Barco Clickshare CSM 1 -	2

References

http://www.securityfocus.com/bid/94323
http://packetstormsecurity.com/files/139713/Barco-ClickShare-XSS-Remote-Code-Execution-Path-Traversal.html
http://www.securityfocus.com/archive/1/539754/100/0/threaded