Vulnerabilities > CVE-2003-0240 - Unspecified vulnerability in Axis products
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN axis
exploit available
Summary
The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).
Vulnerable Configurations
Exploit-Db
| description | Axis Network Camera 2.x HTTP Authentication Bypass Vulnerability. CVE-2003-0240. Remote exploit for hardware platform |
| id | EDB-ID:22626 |
| last seen | 2016-02-02 |
| modified | 2003-05-27 |
| published | 2003-05-27 |
| reporter | Juliano Rizzo |
| source | https://www.exploit-db.com/download/22626/ |
| title | Axis Network Camera 2.x HTTP Authentication Bypass Vulnerability |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/31168/core.axis.txt |
| id | PACKETSTORM:31168 |
| last seen | 2016-12-05 |
| published | 2003-05-28 |
| reporter | Juliano Rizzo |
| source | https://packetstormsecurity.com/files/31168/core.axis.txt.html |
| title | core.axis.txt |
References
- http://marc.info/?l=bugtraq&m=105406374731579&w=2
- http://marc.info/?l=bugtraq&m=105406374731579&w=2
- http://secunia.com/advisories/8876
- http://secunia.com/advisories/8876
- http://securitytracker.com/id?1006854
- http://securitytracker.com/id?1006854
- http://www.coresecurity.com/common/showdoc.php?idx=329&idxseccion=10
- http://www.coresecurity.com/common/showdoc.php?idx=329&idxseccion=10
- http://www.kb.cert.org/vuls/id/799060
- http://www.kb.cert.org/vuls/id/799060
- http://www.osvdb.org/4804
- http://www.osvdb.org/4804
- http://www.securityfocus.com/bid/7652
- http://www.securityfocus.com/bid/7652
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12104
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12104