WebCam Watchdog sresult.exe XSS
Medium Nessus Plugin ID 14186
SynopsisThe remote web server contains a CGI application that is prone to a cross-site scripting attack.
DescriptionThe remote host is running WebCamSoft's watchdog software. There is a CGI script included in this software suite ('sresult.exe') that fails to sanitize user-supplied input to the 'cam' parameter before using it to generate dynamic output. An attacker may exploit this issue to steal cookie-based credentials from a legitimate user of this site.
SolutionUnknown at this time.