Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbInfosec Swedish based tigerteamEDB-ID:19784
HistoryMar 01, 2000 - 12:00 a.m.

Axis Communications StorPoint CD - Authentication Bypass

2000-03-0100:00:00
Infosec Swedish based tigerteam
www.exploit-db.com
26

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/1025/info

Axis StorPoint CD and Axis StorPoint CD/T are CD ROM servers (actual hardware units)sold by Axis Communications. Both of these appliances support remote management 
via SNMP MIB-II and private enterprise MIB as well as from the web via a system-supplied webserver. In regards to the web based administration, users can completely bypass authentication (username and password) by using a specified URL. The actual login page is located at:

http://server/config/html/cnf_gi.htm

However, by using:

http://server/cd/../config/html/cnf_gi.htm

A user side steps the login page and gains administrative access to the appliance.

http://server/cd/../config/html/cnf_gi.htm

Related

nessus 1
cvelist 1
cve 1
nvd 1
nessus
nessus
Axis Storpoint CD Admin Authentication Bypass
2000-03-03 00:00:00
cvelist
cvelist
CVE-2000-0191
2000-10-13 04:00:00
cve
cve
CVE-2000-0191
2000-10-13 04:00:00
nvd
nvd
CVE-2000-0191
2000-02-29 05:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:19784
nessus1cvelist1cve1nvd1