CVE-2003-1386 | SynScan

Vulnerability Database

290,018

Total vulnerabilities in the database

CVE-2003-1386

AXIS 2400 Video Server 2.00 through 2.33 allows remote attackers to obtain sensitive information via an HTTP request to /support/messages, which displays the server's /var/log/messages file.

Published: Dec 31, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-1386
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.4
AV:N/AC:L/Au:N/C:P/I:N/A:P

CWEs:

CWE-264

Affected Software
References

Software	From	Fixed in
axis / 2400_video_server	2.20	2.20.x
axis / 2401_video_server	2.33	2.33.x
axis / 2400_video_server	2.31	2.31.x
axis / 2401_video_server	2.20	2.20.x
axis / 2401_video_server	2.31	2.31.x
axis / 2400_video_server	2.33	2.33.x
axis / 2401_video_server	2.32	2.32.x
axis / 2400_video_server	2.32	2.32.x
axis / 2400_video_server	2.0	2.0.x