|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
[sec-adv] Axis Network Camera HTTP Authentication Bypass Vulnerability
From: Secunia Security Advisories (sec-adv
secunia.com)
Date: Wed May 28 2003 - 07:50:06 CDT
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
TITLE:
Axis Network Camera HTTP Authentication Bypass Vulnerability
READ ONLINE:
http://www.secunia.com/advisories/8876/
CRITICAL:
Highly critical
IMPACT:
Security Bypass
WHERE:
From remote
OPERATING SYSTEM:
Axis Video Server
Axis Network Cameras
Axis DVR
DESCRIPTION:
A vulnerability has been identified in several Axis Network Cameras,
which can be exploited by a malicious person to bypass user
authentication.
Normally a user is required to input a username and password before
access is granted to "http://[victim]/admin/admin.shtml". However, by
sending a HTTP request with an extra "/" before the "admin" folder,
it is possible to bypass the authentication completely.
Example:
http://[victim]//admin/admin.shtml
This method can also be exploited to gain access to other
administrative pages.
The following products have been reported vulnerable:
- AXIS 2100 Network Camera versions 2.32 and previous
- AXIS 2110 Network Camera versions 2.32 and previous
- AXIS 2120 Network Camera versions 2.32 and previous
- AXIS 2130 PTZ Network Camera versions 2.32 and previous
- AXIS 2400 Video Server versions 2.32 and previous
- AXIS 2401 Video Server versions 2.32 and previous
- AXIS 2420 Network Camera versions 2.32 and previous
- AXIS 2460 Network DVR versions 3.00 and previous
- AXIS 250S Video Server versions 3.02 and previous
SOLUTION:
Update firmware:
AXIS 2100 Network Camera:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2100/2_34/
AXIS 2110 Network Camera:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2110/2_34/
AXIS 2120 Network Camera:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2120/2_34/
AXIS 2130 Network Camera:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2130/2_34/
AXIS 2400 Video Server:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2400/2_34/
AXIS 2401 Video Server:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2401/2_34/
AXIS 2420 Network Camera:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2420/2_34/
AXIS 2460 Network DVR:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_2460/3_10/
AXIS 250S Video Server:
ftp://ftp.axis.com/pub_soft/cam_srv/cam_250s/3_03/
REPORTED BY / CREDITS:
Juliano Rizzo from Core Security Technologies.
ORIGINAL ADVISORY:
http://www.coresecurity.com/common/showdoc.php?idx=329&idxseccion=10
----------------------------------------------------------------------
Secunia recommends that you verify all advisories you receive, by
clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only
use those supplied by the vendor.
Contact details:
Web : http://www.secunia.com/
E-mail : supportsecunia.com
Tel : +44 (0) 20 7016 2693
Fax : +44 (0) 20 7637 0419
----------------------------------------------------------------------
Unsubscribe: Secunia Security Advisories
----------------------------------------------------------------------
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]