header-logo
Suggest Exploit
vendor:
207W Network Camera
by:
Unknown
7.5
CVSS
HIGH
Cross-Site Scripting (XSS), Cross-Site Request Forgery (CSRF), Denial-of-Service (DoS)
79, 352, 400
CWE
Product Name: 207W Network Camera
Affected Version From: Unknown
Affected Version To: Unknown
Patch Exists: Unknown
Related CWE: Not specified
CPE: h:axis_communications:207w_network_camera
Metasploit:
Other Scripts:
Platforms Tested:
Unknown

Axis Communications 207W Network Camera Web Interface Vulnerabilities

The Axis Communications 207W Network Camera is prone to multiple vulnerabilities in its web interface. These vulnerabilities include a cross-site scripting vulnerability, a cross-site request-forgery vulnerability, and a denial-of-service vulnerability. Exploiting these vulnerabilities may allow an attacker to compromise the device or prevent other users from using the device.

Mitigation:

It is recommended to update the firmware of the Axis Communications 207W Network Camera to the latest version to mitigate these vulnerabilities. Additionally, users should ensure that the camera is not exposed to the internet without proper network security measures in place.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/25678/info

Axis Communications 207W Network Camera is prone to multiple vulnerabilities in the web interface. Three issues were reported: a cross-site scripting vulnerability, a cross-site request-forgery vulnerability, and a denial-of-service vulnerability.

Exploiting these issues may allow an attacker to compromise the device or to prevent other users from using the device. 

Reboot the camera - http://www.example.com/axis-cgi/admin/restart.cgi