BugTraq
Back to list
|
Post reply
Re: [Full-Disclosure] [PoC] Nasty bug(s) found in Axis Network Camera/Video Servers
Aug 24 2004 03:53AM
bashis (mcw wcd se)
> password issues known to exist..
Yes.
> http://www.google.com/search?hl=en&lr=&ie=UTF-8&newwindow=1&safe=off&q=a
xis+camera+exploit
>
> http://www.google.com/search?hl=en&lr=&ie=UTF-8&newwindow=1&safe=off&q=a
xis+camera+vulnerability
>
> or...
> http://www2.corest.com/common/showdoc.php?idx=329&idxseccion=10
> http://www.securityfocus.com/bid/3640/exploit/
Not the same stuff..
'axis-wh00t.sh' adding a new user 'wh00t' with password 'wh00t' with Admin
priviliges, as anonymous viewer. No matter what password root have.
Read it, try it, understand it, before useless postings..
> >To: security (at) axis (dot) com [email concealed]
> >Date: Mon, 16 Aug 2004 22:48:38 +0200 (CEST)
>
> try the contact page?
> http://www.axis.com/corporate/contact.htm
No mailer-daemon received on 'security (at) axis (dot) com [email concealed]' post.
Have a nice day
/bashis
[ reply ]
Privacy Statement
Copyright 2010, SecurityFocus
> password issues known to exist..
Yes.
> http://www.google.com/search?hl=en&lr=&ie=UTF-8&newwindow=1&safe=off&q=a
xis+camera+exploit
>
> http://www.google.com/search?hl=en&lr=&ie=UTF-8&newwindow=1&safe=off&q=a
xis+camera+vulnerability
>
> or...
> http://www2.corest.com/common/showdoc.php?idx=329&idxseccion=10
> http://www.securityfocus.com/bid/3640/exploit/
Not the same stuff..
'axis-wh00t.sh' adding a new user 'wh00t' with password 'wh00t' with Admin
priviliges, as anonymous viewer. No matter what password root have.
Read it, try it, understand it, before useless postings..
> >To: security (at) axis (dot) com [email concealed]
> >Date: Mon, 16 Aug 2004 22:48:38 +0200 (CEST)
>
> try the contact page?
> http://www.axis.com/corporate/contact.htm
No mailer-daemon received on 'security (at) axis (dot) com [email concealed]' post.
Have a nice day
/bashis
[ reply ]