AXIS 2400 Video Server 2.00 through 2.33 allows remote attackers to obtain sensitive information via an HTTP request to /support/messages, which displays the server's /var/log/messages file.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2003-12-31 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2003-1386
Mitre link : CVE-2003-1386
CVE.ORG link : CVE-2003-1386
JSON object : View
Products Affected
axis
- 2401_video_server
- 2400_video_server
CWE
CWE-264
Permissions, Privileges, and Access Controls