Full Disclosure: Re: Re: CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass

Nmap Security Scanner

Intro

Ref Guide

Install Guide

Download

Changelog

Book

Docs
Security Lists

Bugtraq

Basics

More
Security Tools

More
Site News
Site Search:
Exploit World
Advertising
About/Contact
Credits
Sponsors:

Full Disclosure mailing list archives

Re: Re: CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass

From: "Brent J. Nordquist" <b-nordquist () bethel edu>
Date: Mon, 2 Jun 2003 15:36:52 -0500 (CDT)

On Tue, 27 May 2003, Kee Hinckley <nazgul () somewhere com> wrote:

you turn on the function without configuring the addresses, older 
cameras will default to sending email to mail () somewhere com "from" 
olga () somewhere com   We get on the order of ten to fifteen thousand 
of these every day.


LOL, oops.  Someone pointed out to me a while back that RFC 2606 reserves 
"example.com" "example.org" and "example.net" for this kind of purpose.

-- 
Brent J. Nordquist <b-nordquist () bethel edu> N0BJN
Other contact information: http://kepler.acns.bethel.edu/~bjn/contact.html
* Fast pipe * Always on * Get out of the way - Tim Bray http://tinyurl.com/7sti

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

By Date By Thread

Current thread:

Re: Re: CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass Shawn McMahon (Jun 02)
- <Possible follow-ups>
- Re: Re: CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass Brent J. Nordquist (Jun 02)
  - example.{com,org,net} Brian Hatch (Jun 02)
  - Re: Re: CORE-2003-0403: Axis Network Camera HTTP Authentication Bypass Shawn McMahon (Jun 04)