CVE

Id
8762  
CVE No.
CVE-2004-0334  
Status
Candidate  
Description
InnoMedia VideoPhone allows remote attackers to bypass Basic Authorization via an HTTP request to (1) videophone_admindetail.asp, (2) videophone_syscfg.asp, (3) videophone_upgrade.asp, or (4) videophone_sysctrl.asp that contains a trailing / (slash). NOTE: the original report mentioned AXIS 2100 Network Camera, but this was likely a cut-and-paste error.  
Phase
Modified (20060816)  
Votes
NOOP(5) Armstrong, Christey, Cole, Cox, Wall  
Comments
Christey> According to SecurityTracker.com, the initial advisory | erroneously mentions Axis 1200: | MISC:http://securitytracker.com/alerts/2004/Mar/1009522.html  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
55237 8762 CVE-2004-0334 BUGTRAQ:20040227 InnoMedia VideoPhone Authorization Bypass  View
55238 8762 CVE-2004-0334 URL:http://marc.info/?l=bugtraq&m=107799556111784&w=2  View
55239 8762 CVE-2004-0334 OSVDB:4809  View
55240 8762 CVE-2004-0334 URL:http://www.osvdb.org/4809  View
55241 8762 CVE-2004-0334 SECTRACK:1009522  View
55242 8762 CVE-2004-0334 URL:http://securitytracker.com/alerts/2004/Mar/1009522.html  View
55243 8762 CVE-2004-0334 XF:InnoMedia-videophone-bypass-authentication(15636)  View

Related JVN