Axis Network Camera HTTP Authentication Bypass Vulnerability

Bugtraq ID: 7652
Class: Access Validation Error
CVE: CVE-2003-0240
Remote: Yes
Local: No
Published: May 27 2003 12:00AM
Updated: Jul 11 2009 10:06PM
Credit: The discovery of this vulnerability has been credited to Juliano Rizzo of Core Security Technologies.
Vulnerable: Axis Communications 2420 Video Server 2.32
Axis Communications 2420 Network Camera 2.32
Axis Communications 2420 Network Camera 2.31
Axis Communications 2420 Network Camera 2.30
Axis Communications 2401 Video Server 2.32
Axis Communications 2401 Video Server 2.32
Axis Communications 2401 Video Server 2.31
Axis Communications 2401 Video Server 2.30
Axis Communications 2400 Video Server 2.32
Axis Communications 2400 Video Server 2.31
Axis Communications 2400 Video Server 2.30
Axis Communications 2130 PTZ Network Camera 2.32
Axis Communications 2130 PTZ Network Camera 2.31
Axis Communications 2130 PTZ Network Camera 2.30
Axis Communications 2120 Network Camera 2.32
Axis Communications 2120 Network Camera 2.31
Axis Communications 2120 Network Camera 2.30
Axis Communications 2110 Network Camera 2.32
Axis Communications 2110 Network Camera 2.31
Axis Communications 2110 Network Camera 2.30
Axis Communications 2100 Network Camera 2.32
Axis Communications 2100 Network Camera 2.31
Axis Communications 2100 Network Camera 2.30
Not Vulnerable: Axis Communications 250S Video Server 3.0 3
Axis Communications 2460 Network DVR 3.10
Axis Communications 2420 Network Camera 2.34
Axis Communications 2401 Video Server 2.34
Axis Communications 2400 Video Server 2.34
Axis Communications 2130 PTZ Network Camera 2.34
Axis Communications 2120 Network Camera 2.34
Axis Communications 2110 Network Camera 2.34
Axis Communications 2100 Network Camera 2.34


 

Privacy Statement
Copyright 2010, SecurityFocus