Vulnerability Details CVE-2003-0240
The web-based administration capability for various Axis Network Camera products allows remote attackers to bypass access restrictions and modify configuration via an HTTP request to the admin/admin.shtml containing a leading // (double slash).
Exploit prediction scoring system (EPSS) score
EPSS Score 0.224
EPSS Ranking 95.5%
CVSS Severity
CVSS v2 Score 10.0
References
- http://marc.info/?l=bugtraq&m=105406374731579&w=2
- http://secunia.com/advisories/8876
- http://securitytracker.com/id?1006854
- http://www.coresecurity.com/common/showdoc.php?idx=329&idxseccion=10
- http://www.kb.cert.org/vuls/id/799060
- http://www.osvdb.org/4804
- http://www.securityfocus.com/bid/7652
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12104
- http://marc.info/?l=bugtraq&m=105406374731579&w=2
- http://secunia.com/advisories/8876
- http://securitytracker.com/id?1006854
- http://www.coresecurity.com/common/showdoc.php?idx=329&idxseccion=10
- http://www.kb.cert.org/vuls/id/799060
- http://www.osvdb.org/4804
- http://www.securityfocus.com/bid/7652
- https://exchange.xforce.ibmcloud.com/vulnerabilities/12104
Products affected by CVE-2003-0240
-
cpe:2.3:h:axis:2100_network_camera:-
-
cpe:2.3:h:axis:2100_network_camera:2.0
-
cpe:2.3:h:axis:2100_network_camera:2.01
-
cpe:2.3:h:axis:2100_network_camera:2.02
-
cpe:2.3:h:axis:2100_network_camera:2.03
-
cpe:2.3:h:axis:2100_network_camera:2.12
-
cpe:2.3:h:axis:2100_network_camera:2.30
-
cpe:2.3:h:axis:2100_network_camera:2.31
-
cpe:2.3:h:axis:2100_network_camera:2.32
-
cpe:2.3:h:axis:2110_network_camera:-
-
cpe:2.3:h:axis:2110_network_camera:2.12
-
cpe:2.3:h:axis:2110_network_camera:2.30
-
cpe:2.3:h:axis:2110_network_camera:2.31
-
cpe:2.3:h:axis:2110_network_camera:2.32
-
cpe:2.3:h:axis:2120_network_camera:-
-
cpe:2.3:h:axis:2120_network_camera:2.12
-
cpe:2.3:h:axis:2120_network_camera:2.30
-
cpe:2.3:h:axis:2120_network_camera:2.31
-
cpe:2.3:h:axis:2120_network_camera:2.32
-
cpe:2.3:h:axis:2130_ptz_network_camera:-
-
cpe:2.3:h:axis:2130_ptz_network_camera:2.30
-
cpe:2.3:h:axis:2130_ptz_network_camera:2.31
-
cpe:2.3:h:axis:2130_ptz_network_camera:2.32
-
cpe:2.3:h:axis:2400_video_server:-
-
cpe:2.3:h:axis:2400_video_server:1.1
-
cpe:2.3:h:axis:2400_video_server:1.10
-
cpe:2.3:h:axis:2400_video_server:1.11
-
cpe:2.3:h:axis:2400_video_server:1.12
-
cpe:2.3:h:axis:2400_video_server:1.15
-
cpe:2.3:h:axis:2400_video_server:1.2
-
cpe:2.3:h:axis:2400_video_server:2.0
-
cpe:2.3:h:axis:2400_video_server:2.20
-
cpe:2.3:h:axis:2400_video_server:2.30
-
cpe:2.3:h:axis:2400_video_server:2.31
-
cpe:2.3:h:axis:2400_video_server:2.32
-
cpe:2.3:h:axis:2401_video_server:-
-
cpe:2.3:h:axis:2401_video_server:1.0_1
-
cpe:2.3:h:axis:2401_video_server:1.15
-
cpe:2.3:h:axis:2401_video_server:2.20
-
cpe:2.3:h:axis:2401_video_server:2.30
-
cpe:2.3:h:axis:2401_video_server:2.31
-
cpe:2.3:h:axis:2401_video_server:2.32
-
cpe:2.3:h:axis:2420_network_camera:-
-
cpe:2.3:h:axis:2420_network_camera:2.12
-
cpe:2.3:h:axis:2420_network_camera:2.30
-
cpe:2.3:h:axis:2420_network_camera:2.31
-
cpe:2.3:h:axis:2420_network_camera:2.32
-
cpe:2.3:h:axis:2460_network_dvr:-
-
cpe:2.3:h:axis:2460_network_dvr:3.00
-
cpe:2.3:h:axis:250s_video_server:-
-
cpe:2.3:h:axis:250s_video_server:3.02