recorder_test.cgi on the D-Link DCS-2121 camera with firmware 1.04 allows remote attackers to execute arbitrary commands via shell metacharacters in the Password field, related to a "semicolon injection" vulnerability.
2011-10-16T18:55:01.010
2025-04-11T00:51:21.963
Deferred
CVSSv2: 9.0 (HIGH)
AV:N/AC:L/Au:S/C:C/I:C/A:C
8.0
10.0
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | dlink | dcs-2121_firmware | 1.04 | Yes |
Hardware | dlink | dcs-2121 | * | Yes |