The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| 2100_network_camera | Axis | * | 2.32 (including) |
| 2110_network_camera | Axis | * | 2.32 (including) |
| 2120_network_camera | Axis | * | 2.32 (including) |
| 2130_ptz_network_camera | Axis | * | 2.32 (including) |
| 2400_video_server | Axis | * | 2.32 (including) |
| 2401_video_server | Axis | * | 2.32 (including) |
| 2420_network_camera | Axis | * | 2.32 (including) |
| 2460_network_dvr | Axis | * | 3.00 (including) |
| 250s_video_server | Axis | * | 3.02 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=105406374731579\u0026w=2
- http://secunia.com/advisories/8876
- http://securitytracker.com/id?1006854
- http://www.coresecurity.com/common/showdoc.php?idx=329\u0026idxseccion=10
- http://www.kb.cert.org/vuls/id/799060
- http://www.osvdb.org/4804
- http://www.securityfocus.com/bid/7652
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12104
- http://marc.info/?l=bugtraq\u0026m=105406374731579\u0026w=2
- http://secunia.com/advisories/8876
- http://securitytracker.com/id?1006854
- http://www.coresecurity.com/common/showdoc.php?idx=329\u0026idxseccion=10
- http://www.kb.cert.org/vuls/id/799060
- http://www.osvdb.org/4804
- http://www.securityfocus.com/bid/7652
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12104