4 matches found
CVE-2007-4927
CVE-2007-4927 describes a vulnerability in the AXIS 207W camera where unauthenticated? remote authenticated users can trigger a denial of service (reboot) by issuing many requests with unique buffer names to buffername in a start action of axis-cgi/buffer/command.cgi. The connected records corrob...
CVE-2007-4928
The CVE-2007-4928 case concerns the AXIS 207W camera, where the WEP/WPA key is stored in cleartext in the device’s configuration file. This cleartext storage enables a local user to obtain sensitive credentials. The issue is documented with impact on confidentiality (local access to keys) and a l...
CVE-2007-4929
CVE-2007-4929 concerns the AXIS 207W network camera, where multiple cross-site scripting (XSS) vulnerabilities allow remote attackers to inject arbitrary web script or HTML. The primary vector cited is the camNo parameter to incl/image_incl.shtml, with other unspecified vectors also mentioned. Th...
CVE-2007-4930
The CVE-2007-4930 entry covers multiple CSRF vulnerabilities in the AXIS 207W camera. The affected product is the AXIS 207W network camera. The issues allow remote attackers to perform administrator actions via specific endpoints: (1) axis-cgi/admin/restart.cgi, (2) axis-cgi/admin/pwdgrp.cgi with...