CVE Vulnerabilities

CVE-2004-2425

Published: Dec 31, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Axis Network Camera 2.40 and earlier, and Video Server 3.12 and earlier, allows remote attackers to execute arbitrary commands via accent (`) and possibly other shell metacharacters in the query string to virtualinput.cgi.

Affected Software

Name Vendor Start Version End Version
2100_network_camera Axis 2.12 2.12
2100_network_camera Axis 2.30 2.30
2100_network_camera Axis 2.31 2.31
2100_network_camera Axis 2.32 2.32
2100_network_camera Axis 2.33 2.33
2100_network_camera Axis 2.34 2.34
2100_network_camera Axis 2.40 2.40
2100_network_camera Axis 2.41 2.41
2110_network_camera Axis 2.12 2.12
2110_network_camera Axis 2.30 2.30
2110_network_camera Axis 2.31 2.31
2110_network_camera Axis 2.32 2.32
2110_network_camera Axis 2.34 2.34
2110_network_camera Axis 2.40 2.40
2110_network_camera Axis 2.41 2.41
2120_network_camera Axis 2.12 2.12
2120_network_camera Axis 2.30 2.30
2120_network_camera Axis 2.31 2.31
2120_network_camera Axis 2.32 2.32
2120_network_camera Axis 2.34 2.34
2120_network_camera Axis 2.40 2.40
2120_network_camera Axis 2.41 2.41
2130_ptz_network_camera Axis 2.30 2.30
2130_ptz_network_camera Axis 2.31 2.31
2130_ptz_network_camera Axis 2.32 2.32
2130_ptz_network_camera Axis 2.34 2.34
2130_ptz_network_camera Axis 2.40 2.40
230_mpeg2_video_server Axis 3.11 3.11
2400_video_server Axis 1.1 1.1
2400_video_server Axis 1.2 1.2
2400_video_server Axis 1.10 1.10
2400_video_server Axis 1.11 1.11
2400_video_server Axis 1.12 1.12
2400_video_server Axis 1.15 1.15
2400_video_server Axis 2.0 2.0
2400_video_server Axis 2.20 2.20
2400_video_server Axis 2.30 2.30
2400_video_server Axis 2.31 2.31
2400_video_server Axis 2.32 2.32
2400_video_server Axis 2.33 2.33
2400_video_server Axis 2.34 2.34
2400_video_server Axis 3.11 3.11
2400_video_server Axis 3.12 3.12
2401_video_server Axis 1.0_1 1.0_1
2401_video_server Axis 1.15 1.15
2401_video_server Axis 2.20 2.20
2401_video_server Axis 2.30 2.30
2401_video_server Axis 2.31 2.31
2401_video_server Axis 2.32 2.32
2401_video_server Axis 2.33 2.33
2401_video_server Axis 2.34 2.34
2401_video_server Axis 3.12 3.12
2401_video_server Axis 3.13 3.13
2411_video_server Axis 3.12 3.12
2411_video_server Axis 3.13 3.13
2420_network_camera Axis 2.12 2.12
2420_network_camera Axis 2.30 2.30
2420_network_camera Axis 2.31 2.31
2420_network_camera Axis 2.32 2.32
2420_network_camera Axis 2.33 2.33
2420_network_camera Axis 2.34 2.34
2420_network_camera Axis 2.40 2.40
2420_network_camera Axis 2.41 2.41
2420_video_server Axis 2.32 2.32
2420_video_server Axis 2.34 2.34
2460_network_dvr Axis * *
2460_network_dvr Axis 3.10 3.10
2460_network_dvr Axis 3.11 3.11
2490_serial_server Axis * *
2490_serial_server Axis 2.11.3 2.11.3
250s_video_server Axis * *
250s_video_server Axis 3.03 3.03
250s_video_server Axis 3.10 3.10
Storpoint_cd Axis * *

References