This site is deprecated. Please
CLICK HERE for latest updates
Short Name |
HTTP:CGI:AXIS-ACCOUNT
|
Severity |
Critical
|
Recommended |
No
|
Recommended Action |
Drop
|
Category |
HTTP
|
Keywords |
Axis Video Server Remote Account Addition
|
Release Date |
2004/09/30
|
Update Number |
1213
|
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+
|
HTTP: Axis Video Server Remote Account Addition
This signature detects a request to an Axis Video Server containing parameters designed to create an Administrator account on the server.
Extended Description
Multiple vulnerabilities are reported to reside in multiple Axis network video and camera servers:
1. A shell metacharacter command-execution vulnerability allows an anonymous user to download the contents of the '/etc/passwd' file on the device. Other commands are also likely to work, facilitating other attacks.
This issue is reported to affect:
- Axis 2100, 2110, 2120, 2420 network cameras with firmware versions 2.34 thru 2.40
- Axis 2130 network cameras
- Axis 2401 and 2401 video servers
2. A directory-traversal vulnerability in HTTP POST requests. This attack is demonstrated by an anonymous user calling protected administration scripts. This bypasses authentication checks and gives anonymous users remote adminitration of the devices.
This issue is reported to affect:
- Axis 2100, 2110, 2120, 2420 network cameras with firmware versions 2.12 thru 2.40
- Axis 2130 network cameras
- Axis 2401,and 2401 video servers
3. A hardcoded backdoor administrative-user issue allows remote attackers to administer affected devices. This likely cannot be disabled.
This issue is reported to affect:
- Axis StorePoint CD E100 CD-ROM Server with firmware version 5.30
Other products and versions of firmware are likely affected by one or more of these vulnerabilities.
Affected Products
- Axis_communications 2100_network_camera 2.12.0
- Axis_communications 2100_network_camera 2.30.0
- Axis_communications 2100_network_camera 2.31.0
- Axis_communications 2100_network_camera 2.32.0
- Axis_communications 2100_network_camera 2.33.0
- Axis_communications 2100_network_camera 2.34.0
- Axis_communications 2100_network_camera 2.40.0
- Axis_communications 2100_network_camera 2.41.0
- Axis_communications 2110_network_camera 2.12.0
- Axis_communications 2110_network_camera 2.30.0
- Axis_communications 2110_network_camera 2.31.0
- Axis_communications 2110_network_camera 2.32.0
- Axis_communications 2110_network_camera 2.34.0
- Axis_communications 2110_network_camera 2.40.0
- Axis_communications 2110_network_camera 2.41.0
- Axis_communications 2120_network_camera 2.12.0
- Axis_communications 2120_network_camera 2.30.0
- Axis_communications 2120_network_camera 2.31.0
- Axis_communications 2120_network_camera 2.32.0
- Axis_communications 2120_network_camera 2.34.0
- Axis_communications 2120_network_camera 2.40.0
- Axis_communications 2120_network_camera 2.41.0
- Axis_communications 2130_ptz_network_camera 2.30.0
- Axis_communications 2130_ptz_network_camera 2.31.0
- Axis_communications 2130_ptz_network_camera 2.32.0
- Axis_communications 2130_ptz_network_camera 2.34.0
- Axis_communications 2130_ptz_network_camera 2.40.0
- Axis_communications 230_mpeg-2_video_server 3.11.0
- Axis_communications 2400+_blade_video_server 3.12.0
- Axis_communications 2400_video_server 1.0.0 1
- Axis_communications 2400_video_server 1.0.0 2
- Axis_communications 2400_video_server 1.10.0
- Axis_communications 2400_video_server 1.11.0
- Axis_communications 2400_video_server 1.12.0
- Axis_communications 2400_video_server 1.15.0
- Axis_communications 2400_video_server 2.0.0
- Axis_communications 2400_video_server 2.20.0
- Axis_communications 2400_video_server 2.30.0
- Axis_communications 2400_video_server 2.31.0
- Axis_communications 2400_video_server 2.32.0
- Axis_communications 2400_video_server 2.33.0
- Axis_communications 2400_video_server 2.34.0
- Axis_communications 2400+_video_server 3.11.0
- Axis_communications 2400+_video_server 3.12.0
- Axis_communications 2401+_blade_video_server 3.12.0
- Axis_communications 2401_video_server 1.0.0 1
- Axis_communications 2401_video_server 1.15.0
- Axis_communications 2401_video_server 2.20.0
- Axis_communications 2401_video_server 2.30.0
- Axis_communications 2401_video_server 2.31.0
- Axis_communications 2401_video_server 2.32.0
- Axis_communications 2401_video_server 2.33.0
- Axis_communications 2401_video_server 2.34.0
- Axis_communications 2401+_video_server 3.12.0
- Axis_communications 2401+_video_server 3.12.0
- Axis_communications 2401+_video_server 3.13.0
- Axis_communications 2411_video_server 3.12.0
- Axis_communications 2411_video_server 3.12.0
- Axis_communications 2411_video_server 3.13.0
- Axis_communications 2420_network_camera 2.12.0
- Axis_communications 2420_network_camera 2.30.0
- Axis_communications 2420_network_camera 2.31.0
- Axis_communications 2420_network_camera 2.32.0
- Axis_communications 2420_network_camera 2.33.0
- Axis_communications 2420_network_camera 2.34.0
- Axis_communications 2420_network_camera 2.40.0
- Axis_communications 2420_network_camera 2.41.0
- Axis_communications 2420_video_server 2.32.0
- Axis_communications 2420_video_server 2.34.0
- Axis_communications 2460_network_dvr 3.10.0
- Axis_communications 2460_network_dvr 3.11.0
- Axis_communications 2490_serial_server 2.11.3
- Axis_communications 250s_mpeg-2_video_server 3.10.0
- Axis_communications 250s_video_server 3.0.0 3
- Axis_communications mpeg-2_video_server 250S
- Axis_communications network_dvr 2460
- Axis_communications serial_server 2490
- Axis_communications storpoint CD
References