CVE-2007-4928

The AXIS 207W camera stores a WEP or WPA key in cleartext in the configuration file, which might allow local users to obtain sensitive information...

CVE-2007-4927

axis-cgi/buffer/command.cgi on the AXIS 207W camera allows remote authenticated users to cause a denial of service reboot via many requests with unique buffer names in the buffername parameter in a start action...

CVE-2007-4929

CVE-2007-4929 concerns the AXIS 207W network camera, where multiple cross-site scripting (XSS) vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The primary vector cited is the camNo parameter to incl/image_incl.shtml, with other unspecified vectors also mentioned. Th...

CVE-2007-4930

The CVE-2007-4930 entry covers multiple CSRF vulnerabilities in the AXIS 207W camera. The affected product is the AXIS 207W network camera. The issues allow remote attackers to perform administrator actions via specific endpoints: (1) axis-cgi/admin/restart.cgi, (2) axis-cgi/admin/pwdgrp.cgi with...

CVE-2007-4928

The CVE-2007-4928 case concerns the AXIS 207W camera, where the WEP/WPA key is stored in cleartext in the device’s configuration file. This cleartext storage enables a local user to obtain sensitive credentials. The issue is documented with impact on confidentiality (local access to keys) and a l...

CVE-2007-4930

Multiple cross-site request forgery CSRF vulnerabilities in the AXIS 207W camera allow remote attackers to perform certain actions as administrators via 1 axis-cgi/admin/restart.cgi, 2 the user and sgrp parameters to axis-cgi/admin/pwdgrp.cgi in an add action, or 3 the server parameter to...

CVE-2007-4926

The CVE-2007-4926 entry concerns the AXIS 207W camera. The affected component is the authentication mechanism that uses a base64-encoded cleartext username and password, enabling an attacker to obtain credentials by eavesdropping on wireless traffic or via other unspecified vectors. Practical imp...

07080701_axis.txt

http://airscanner.com/security/07080701axis.htm Airscanner Mobile Security Advisory 07080101: Axis 207W Multiple Vulnerabilities Product: AXIS 207W Platform: NA Requirements: AXIS 207W Camera on WLAN/LAN Credits: Seth Fogie Airscanner Mobile Security http://www.airscanner.com May 30, 2007 Risk...

Axis 207W Wireless Camera Web Interface - Multiple Vulnerabilities

http://airscanner.com/security/07080701axis.htm Airscanner Mobile Security Advisory 07080101: Axis 207W Multiple Vulnerabilities Product: AXIS 207W Platform: NA Requirements: AXIS 207W Camera on WLAN/LAN Credits: Seth Fogie Airscanner Mobile Security http://www.airscanner.com May 30, 2007 Risk...

AXIS 207W web camera multiple security vulnerabilities

Crossite scripting, request forgery...

Axis Communications 207W Network Camera - Web Interface axis-cgiadminpwdgrp.cgi Multiple Cross-Site Request Forgery Vulnerabilities

Axis Communications 207W Network Camera - Web Interface axis-cgiadminpwdgrp.cgi Multiple Cross-Site Request Forgery Vulnerabilities source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues...

Axis Communications 207W Network Camera - Web Interface axis-cgiadminrestart.cgi Cross-Site Request Forgery

Axis Communications 207W Network Camera - Web Interface axis-cgiadminrestart.cgi Cross-Site Request Forgery source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a...

Axis Communications 207W Network Camera - Web Interface adminrestartMessage.shtml?server Cross-Site Request Forgery

Axis Communications 207W Network Camera - Web Interface adminrestartMessage.shtml?server Cross-Site Request Forgery source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a...

Axis Communications 207W Network Camera - Web Interface '/admin/restartMessage.shtml?server' Cross-Site Request Forgery

source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a cross-site scripting vulnerability, a cross-site request-forgery vulnerability, and a denial-of-service...

Axis Communications 207W Network Camera - Web Interface 'axis-cgi/admin/pwdgrp.cgi' Multiple Cross-Site Request Forgery Vulnerabilities

source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a cross-site scripting vulnerability, a cross-site request-forgery vulnerability, and a denial-of-service...

Axis Communications 207W Network Camera - Web Interface axis-cgi/admin/restart.cgi Cross-Site Request Forgery

source: https://www.securityfocus.com/bid/25678/info Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a cross-site scripting vulnerability, a cross-site request-forgery vulnerability, and a denial-of-service...

MSN messenger 7.x (8.0?) VIDEO Remote Heap Overflow Exploit

No description provided by source. MSN messenger 7.x 8.0? VIDEO Remote Heap Overflow Exploit thanks ole andre again, His ospy is perfect. 1.compile the dll. 2.inject the dll to msn messenger 7.0.777.0 's process. 3. choose "send my webcam" to a contact id who is online using 7.x 8.0?...

[SECURITY] Fedora 7 Update: kdegraphics-3.5.7-2.fc7

Graphics applications for the K Desktop Environment, including kamera digital camera support kcoloredit palette editor and color chooser kdvi displays TeX .dvi files kghostview displays postscript files kiconedit icon editor kooka scanner application kpdf displays PDF files kruler screen ruler an...

Information disclosure

Unspecified vulnerability in Camera Life before 2.6 allows remote attackers to download private photos via unspecified vectors associated with the names of the photos. NOTE: some of these details are obtained from third party information...

CVE-2007-4234

Unspecified vulnerability in Camera Life before 2.6 allows remote attackers to download private photos via unspecified vectors associated with the names of the photos. NOTE: some of these details are obtained from third party information...