Lucene search
K

1725 matches found

securityvulns
securityvulns
added 2003/05/28 12:0 a.m.57 views

CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass

Core Security Technologies Advisory http://www.coresecurity.com Axis Network Camera HTTP Authentication Bypass Date Published: 2003-05-27 Last Update: 2003-05-23 Advisory ID: CORE-2003-0403 Bugtraq ID: 7652 CVE Name: CAN-2003-0240 Title: Axis Network Camera HTTP Authentication Bypass Class: Acces...

10CVSS0.4AI score0.29521EPSS
Exploits1
Packet Storm
Packet Storm
added 2003/05/28 12:0 a.m.56 views

core.axis.txt

Core Security Technologies Advisory http://www.coresecurity.com Axis Network Camera HTTP Authentication Bypass Date Published: 2003-05-27 Last Update: 2003-05-23 Advisory ID: CORE-2003-0403 Bugtraq ID: 7652 CVE Name: CAN-2003-0240 Title: Axis Network Camera HTTP Authentication Bypass Class: Acces...

10CVSS6.7AI score0.29521EPSS
Exploits1
securityvulns
securityvulns
added 2003/05/28 12:0 a.m.37 views

Axis Network Camera unauthorized access

By adding additional / after hostname in Web access URL it's possible to bypass authentication...

3AI score
Exploits0References1Affected Software1
exploitpack
exploitpack
added 2003/05/27 12:0 a.m.16 views

Axis Network Camera 2.x - HTTP Authentication Bypass

Axis Network Camera 2.x - HTTP Authentication Bypass source: https://www.securityfocus.com/bid/7652/info A vulnerability has been discovered in various Axis Communications products. By making a request for a specially formatted URL, it may be possible for remote users to access the administrative...

0.9AI score
Exploits0
Exploit DB
Exploit DB
added 2003/05/27 12:0 a.m.65 views

Axis Network Camera 2.x - HTTP Authentication Bypass

source: https://www.securityfocus.com/bid/7652/info A vulnerability has been discovered in various Axis Communications products. By making a request for a specially formatted URL, it may be possible for remote users to access the administrative configuration interface without being prompted for...

7.4AI score
Exploits0
Core Security
Core Security
added 2003/05/27 12:0 a.m.40 views

Axis Network Camera HTTP Authentication Bypass

Advisory ID Internal CORE-2003-0403 Core Security Technologies Advisory http://www.coresecurity.com Date Published: 2003-05-27 Last Update: 2003-05-23 Advisory ID: CORE-2003-0403 Bugtraq ID: 7652 CVE Name: CAN-2003-0240 Title: Axis Network Camera HTTP Authentication Bypass Class: Access Validatio...

10CVSS7.4AI score0.29521EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2003/03/01 12:0 a.m.28 views

Axis 2400 Network Camera Multiple Vulnerabilities

The remote Axis Network Camera is affected by multiple vulnerabilities : - It is possible for an attacker to view the remote '/var/log/messages' file providing an attacker with access to sensitive information. - There is a flaw in the 'buffername' and 'format' parameters when calling the...

6.4CVSS5.8AI score0.07711EPSS
Exploits0References5
exploitpack
exploitpack
added 2003/02/28 12:0 a.m.15 views

Axis Communications HTTP Server 2.x - Messages Information Disclosure

Axis Communications HTTP Server 2.x - Messages Information Disclosure source: https://www.securityfocus.com/bid/6980/info It has been reported that the Axis Video Server does not properly secure sensitive information. Because of this, an attacker may be able to gather details about server operati...

Exploits0
exploitpack
exploitpack
added 2003/02/28 12:0 a.m.18 views

Axis Communications Video Server 2.x - Command.cgi File Creation

Axis Communications Video Server 2.x - Command.cgi File Creation source: https://www.securityfocus.com/bid/6987/info It has been reported that the Axis Video Servers do not properly handle input to the 'command.cgi' script. Because of this, an attacker may be able to create arbitrary files that...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/02/28 12:0 a.m.21 views

Axis Communications HTTP Server 2.x - Messages Information Disclosure

source: https://www.securityfocus.com/bid/6980/info It has been reported that the Axis Video Server does not properly secure sensitive information. Because of this, an attacker may be able to gather details about server operation and traffic that could lead to further attacks...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2003/02/28 12:0 a.m.21 views

Axis Communications Video Server 2.x - 'Command.cgi' File Creation

source: https://www.securityfocus.com/bid/6987/info It has been reported that the Axis Video Servers do not properly handle input to the 'command.cgi' script. Because of this, an attacker may be able to create arbitrary files that would result in a denial of service, or potentially command...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2002/12/21 12:0 a.m.30 views

Web server vulnerability in Axis Network Cameras, Video Servers and DVRs

Date: 20 December 2002 1. Topic Web server vulnerability in Axis Network Cameras, Video Servers and Network Digital Video Recorders. 2. Description A potential stack buffer overflow has been found in the authentication code of the modified version of Boa used in some of the embedded Linux based...

1.6AI score
Exploits0
securityvulns
securityvulns
added 2002/12/21 12:0 a.m.28 views

Buffer overflow in Axis video products

Buffer overflow in Web interface...

4.7AI score
Exploits0References1Affected Software1
NVD
NVD
added 2001/12/31 5:0 a.m.16 views

CVE-2001-1543

Axis network camera 2120, 2110, 2100, 200+ and 200 contains a default administration password "pass", which allows remote attackers to gain access to the camera...

7.5CVSS7.1AI score0.02389EPSS
Exploits0References4
Cvelist
Cvelist
added 2000/10/13 4:0 a.m.15 views

CVE-2000-0191

Axis StorPoint CD allows remote attackers to access administrator URLs without authentication via a .. dot dot attack...

6.8AI score0.10886EPSS
Exploits1References3
CVE
CVE
added 2000/10/13 4:0 a.m.51 views

CVE-2000-0191

The CVE-2000-0191 issue affects Axis StorPoint CD. A directory traversal vulnerability allows remote attackers to reach administrator URLs without authentication by exploiting a .. sequence, enabling an authentication bypass. The Nessus entry references a specific crafted URL path (e.g., /cd/../c...

10CVSS6.9AI score0.10886EPSS
Exploits1References3Affected Software1
Tenable Nessus
Tenable Nessus
added 2000/09/06 12:0 a.m.54 views

Axis Camera Default Password

The remote host seems to be an Axis Network Camera. It was possible to log into the remote host with the default credentials 'root/pass'. An attacker may use these credentials to trivially access the system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. Script audit and contributions from...

7.5CVSS5.5AI score0.02389EPSS
Exploits0References1
CVE
CVE
added 2000/04/18 4:0 a.m.55 views

CVE-2000-0144

CVE-2000-0144 (Axis 700 Network Scanner) involves improper access control: administrator URLs are not properly restricted, permitting a dot-dot directory traversal to bypass password protection. Affected: Axis 700 Network Scanner; Trigger: access to admin URLs via .. traversal; Impact: password b...

7.5CVSS7AI score0.01604EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2000/04/18 4:0 a.m.26 views

CVE-2000-0144

Axis 700 Network Scanner does not properly restrict access to administrator URLs, which allows users to bypass the password protection via a .. dot dot attack...

6.6AI score0.01604EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2000/03/03 12:0 a.m.82 views

Axis Storpoint CD Admin Authentication Bypass

The remote host is running Axis StorPoint. It is possible to access the administration interface with a specially crafted URL that contains directory traversal characters. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

10CVSS5.5AI score0.10886EPSS
Exploits1References2
Rows per page
Query Builder