CVE-2007-5213

Multiple cross-site request forgery (CSRF) vulnerabilities in the AXIS 2100 Network Camera 2.02 with firmware 2.43 and earlier allow remote attackers to perform actions as administrators, as demonstrated by (1) an SMTP server change through the conf_SMTP_MailServer1 parameter to ServerManager.srv and (2) a hostname change through the conf_Network_HostName parameter on the Network page.

BUGTRAQ: http://www.securityfocus.com/archive/1/archive/1/480995/100/0/threaded
MISC: http://www.procheckup.com/Vulnerability_Axis_2100_research.pdf
BID: http://www.securityfocus.com/bid/25837
OSVDB: http://osvdb.org/39490
OSVDB: http://osvdb.org/39491
SREASON: http://securityreason.com/securityalert/3188
CVE: https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5213

9 years
248 countries
473k users
2689k calculations
Logo www.eleksys.cz
Logo ru.kedacom.com
Logo reolink.com
Logo www.power-shop.gr
Logo sectech.co.nz
Logo www.systemy-stech.cz