header-logo
Suggest Exploit
vendor:
Axis Communications
by:
SecurityFocus
8.8
CVSS
HIGH
Unauthenticated Access
287
CWE
Product Name: Axis Communications
Affected Version From: Axis Communications software prior to version 2.20
Affected Version To: Axis Communications software prior to version 2.20
Patch Exists: YES
Related CWE: CVE-2002-0231
CPE: o:axis:axis_communications
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2002

Unauthenticated Access

A vulnerability has been discovered in various Axis Communications products, which allows remote users to access the administrative configuration interface without being prompted for authentication. This is achieved by making a request for a specially formatted URL, such as http://camera-ip//admin/admin.shtml.

Mitigation:

Users should ensure that their systems are running the latest version of the Axis Communications software.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7652/info

A vulnerability has been discovered in various Axis Communications products. By making a request for a specially formatted URL, it may be possible for remote users to access the administrative configuration interface without being prompted for authentication. 

http://camera-ip//admin/admin.shtml

Navigation

Suggest Exploit

Services By CQR