Lucene search
K

72 matches found

NVD
NVD
added 2013/10/04 11:55 p.m.22 views

CVE-2013-3543

The AXIS Media Control AMC ActiveX control AxisMediaControlEmb.dll 6.2.10.11 for AXIS network cameras allows remote attackers to create or overwrite arbitrary files via a file path to the 1 StartRecord, 2 SaveCurrentImage, or 3 StartRecordMedia methods...

8.8CVSS6.8AI score0.04132EPSS
Exploits5References1
Cvelist
Cvelist
added 2013/10/04 11:0 p.m.35 views

CVE-2013-3543

The AXIS Media Control AMC ActiveX control AxisMediaControlEmb.dll 6.2.10.11 for AXIS network cameras allows remote attackers to create or overwrite arbitrary files via a file path to the 1 StartRecord, 2 SaveCurrentImage, or 3 StartRecordMedia methods...

6.8AI score0.04132EPSS
Exploits5References1
F5 Networks
F5 Networks
added 2007/05/16 12:0 a.m.50 views

SOL3568 - DNS denial of service vulnerability - CAN-2004-0789

Vulnerability description and product information: Multiple implementations of the DNS protocol, including 1 Poslib 1.0.2-1 and earlier as used by Posadis, 2 Axis Network products before firmware 3.13, and 3 Men & Mice Suite 2.2x before 2.2.3 and 3.5.x before 3.5.2, allow remote attackers to caus...

5CVSS2.6AI score0.02765EPSS
Exploits0
Cvelist
Cvelist
added 2005/09/01 4:0 a.m.33 views

CVE-2004-0789

Multiple implementations of the DNS protocol, including 1 Poslib 1.0.2-1 and earlier as used by Posadis, 2 Axis Network products before firmware 3.13, and 3 Men & Mice Suite 2.2x before 2.2.3 and 3.5.x before 3.5.2, allow remote attackers to cause a denial of service CPU and network bandwidth...

6.8AI score0.02765EPSS
Exploits0References7
Cvelist
Cvelist
added 2005/08/18 4:0 a.m.29 views

CVE-2004-2426

Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication via a .. dot dot in an HTTP POST request to ServerManager.srv, then use these privileges to conduct other activities, such as modifying...

7AI score0.04187EPSS
Exploits1References7
CVE
CVE
added 2005/08/18 4:0 a.m.57 views

CVE-2004-2426

Axis Network Camera 2.40 and earlier and Axis Video Server 3.12 and earlier are affected by a directory-traversal vulnerability that lets remote attackers bypass authentication by using a .. sequence in an HTTP POST to ServerManager.srv and then perform privileged actions such as modifying files ...

5CVSS7.4AI score0.04187EPSS
Exploits1References7Affected Software14
CVE
CVE
added 2005/08/18 4:0 a.m.74 views

CVE-2004-2427

CVE-2004-2427 affects Axis Network Camera (versions 2.40 and earlier) and Axis Video Server (versions 3.12 and earlier). The vulnerability enables unauthenticated remote access to sensitive information via direct requests to admin/getparam.cgi, admin/systemlog.cgi, admin/serverreport.cgi, and adm...

10CVSS7.1AI score0.05371EPSS
Exploits1References9Affected Software14
Cvelist
Cvelist
added 2005/07/14 4:0 a.m.22 views

CVE-2001-1543

Axis network camera 2120, 2110, 2100, 200+ and 200 contains a default administration password "pass", which allows remote attackers to gain access to the camera...

7.1AI score0.02389EPSS
Exploits0References4
CVE
CVE
added 2005/07/14 4:0 a.m.88 views

CVE-2001-1543

Axis Network Camera models 2120, 2110, 2100, 200+ and 200 are affected by CVE-2001-1543 due to a default administrator password. This root cause allows remote attackers to gain access using the credentials pass. Impact stated across multiple sources is unauthorized access to the camera. No explic...

7.5CVSS7.1AI score0.02389EPSS
Exploits0References4Affected Software5
NVD
NVD
added 2004/12/31 5:0 a.m.20 views

CVE-2004-2427

Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to obtain sensitive information via direct requests to 1 admin/getparam.cgi, 2 admin/systemlog.cgi, 3 admin/serverreport.cgi, and 4 admin/paramlist.cgi, modify system information via 5 setparam.cgi an...

10CVSS6.7AI score0.05371EPSS
Exploits1References9
NVD
NVD
added 2004/12/31 5:0 a.m.21 views

CVE-2004-2425

Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to execute arbitrary commands via accent and possibly other shell metacharacters in the query string to virtualinput.cgi...

7.5CVSS7.7AI score0.1353EPSS
Exploits1References7
NVD
NVD
added 2004/12/31 5:0 a.m.27 views

CVE-2004-0789

Multiple implementations of the DNS protocol, including 1 Poslib 1.0.2-1 and earlier as used by Posadis, 2 Axis Network products before firmware 3.13, and 3 Men & Mice Suite 2.2x before 2.2.3 and 3.5.x before 3.5.2, allow remote attackers to cause a denial of service CPU and network bandwidth...

5CVSS6.8AI score0.02765EPSS
Exploits0References7
NVD
NVD
added 2004/12/31 5:0 a.m.22 views

CVE-2004-2426

Directory traversal vulnerability in Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to bypass authentication via a .. dot dot in an HTTP POST request to ServerManager.srv, then use these privileges to conduct other activities, such as modifying...

5CVSS7AI score0.04187EPSS
Exploits1References7
securityvulns
securityvulns
added 2004/09/11 12:0 a.m.31 views

Axis Network Camera and Video Server Security Advisory

Topic Security issues have been identified that allows an attacker to compromise Axis Network Cameras, Video Servers, Serial Servers and Network Digital Video Recorders. 2. Description The first issue allows arbitrary shell command execution via HTTP requests due to erroneous shell command and...

0.9AI score
Exploits0
securityvulns
securityvulns
added 2004/08/25 12:0 a.m.43 views

[PoC] Nasty bug(s) found in Axis Network Camera/Video Servers

/ Public disclosure due lack of responce from Axis Communications / I have found a couple of bugs in Axis Network Camera/Video Servers. I have all Axis stuff in one e-mail, instead of multiple, lazy me.. ; Vulnerable: Axis 2100/2110/2120/2420/2130 Network Camera, 2400/2401 Video Server. There may...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2004/08/24 12:0 a.m.31 views

axisFlaws.txt

/ Public disclosure due lack of responce from Axis Communications / I have found a couple of bugs in Axis Network Camera/Video Servers. I have all Axis stuff in one e-mail, instead of multiple, lazy me.. ; Vulnerable: Axis 2100/2110/2120/2420/2130 Network Camera, 2400/2401 Video Server. There may...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2004/08/23 12:0 a.m.15 views

Axis Network Camera 2.x And Video Server 1-3 - virtualinput.cgi Arbitrary Command Execution

Axis Network Camera 2.x And Video Server 1-3 - virtualinput.cgi Arbitrary Command Execution source: https://www.securityfocus.com/bid/11011/info 1. A shell metacharacter command-execution vulnerability allows an anonymous user to download the contents of the '/etc/passwd' file on the device. Othe...

1AI score
Exploits0
Exploit DB
Exploit DB
added 2004/08/23 12:0 a.m.29 views

Axis Network Camera 2.x And Video Server 1-3 - Directory Traversal

source: https://www.securityfocus.com/bid/11011/info A directory-traversal vulnerability in HTTP POST requests. This attack is demonstrated by an anonymous user calling protected administration scripts. This bypasses authentication checks and gives anonymous users remote adminitration of the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2004/08/23 12:0 a.m.35 views

Axis Network Camera 2.x And Video Server 1-3 - 'virtualinput.cgi' Arbitrary Command Execution

source: https://www.securityfocus.com/bid/11011/info 1. A shell metacharacter command-execution vulnerability allows an anonymous user to download the contents of the '/etc/passwd' file on the device. Other commands are also likely to work, facilitating other attacks. This issue is reported to...

7AI score
Exploits0
exploitpack
exploitpack
added 2004/08/23 12:0 a.m.23 views

Axis Network Camera 2.x And Video Server 1-3 - Directory Traversal

Axis Network Camera 2.x And Video Server 1-3 - Directory Traversal source: https://www.securityfocus.com/bid/11011/info A directory-traversal vulnerability in HTTP POST requests. This attack is demonstrated by an anonymous user calling protected administration scripts. This bypasses authenticatio...

0.3AI score
Exploits0
Rows per page
Query Builder