NI3
11-05-2003, 11:50 AM
TITLE:
FlexWATCH Network Video Server User Authentication Bypass
Vulnerability
SECUNIA ADVISORY ID:
SA10132
VERIFY ADVISORY:
[Only registered and activated users can see links]
CRITICAL:
Moderately critical
IMPACT:
Security Bypass
WHERE:
From local network
OPERATING SYSTEM:
FlexWATCH firmware 2.x
DESCRIPTION:
A vulnerability has been reported in FlexWATCH Network Video Server,
which can be exploited by malicious people to bypass the user
authentication and gain administrative access.
The vulnerability is caused due to an error when determining access
rights to restricted resources. This can be exploited to bypass the
authentication process completely by appending an extra "/" character
after the FQDN (Fully-Qualified Domain Name) when accessing a
resource.
Example:
[Only registered and activated users can see links][victim]//admin/aindex.htm
The vulnerability has been reported in FlexWATCH Network Video Server
Model 132 firmware version 2.2. Other versions and products may also
be affected.
SOLUTION:
Restrict access to the web interface allowing only trusted IPs to
connect.
REPORTED BY / CREDITS:
Slaizer
ORIGINAL ADVISORY:
Unauthorized access Vulnerability in FlexWATCH camera Server:
[Only registered and activated users can see links]
----------------------------------------------------------------------
FlexWATCH Network Video Server User Authentication Bypass
Vulnerability
SECUNIA ADVISORY ID:
SA10132
VERIFY ADVISORY:
[Only registered and activated users can see links]
CRITICAL:
Moderately critical
IMPACT:
Security Bypass
WHERE:
From local network
OPERATING SYSTEM:
FlexWATCH firmware 2.x
DESCRIPTION:
A vulnerability has been reported in FlexWATCH Network Video Server,
which can be exploited by malicious people to bypass the user
authentication and gain administrative access.
The vulnerability is caused due to an error when determining access
rights to restricted resources. This can be exploited to bypass the
authentication process completely by appending an extra "/" character
after the FQDN (Fully-Qualified Domain Name) when accessing a
resource.
Example:
[Only registered and activated users can see links][victim]//admin/aindex.htm
The vulnerability has been reported in FlexWATCH Network Video Server
Model 132 firmware version 2.2. Other versions and products may also
be affected.
SOLUTION:
Restrict access to the web interface allowing only trusted IPs to
connect.
REPORTED BY / CREDITS:
Slaizer
ORIGINAL ADVISORY:
Unauthorized access Vulnerability in FlexWATCH camera Server:
[Only registered and activated users can see links]
----------------------------------------------------------------------