COMMAND

    Axis

SYSTEMS AFFECTED

    Axis StorPoint CD, Axis StorPoint CD/T (Software Version 4.13)

PROBLEM

    Following  is  based  on  Infosec  Security  Vulnerability Report.
    By  modifying  an  URL,  outsiders  can  access administrator URLs
    without entering username and password.

    CDs are available from the URL

        http://server/cd/

    The configuration URL is:

        http://server/config/html/cnf_gi.htm

    This page is protected by a login and could contain very sensitive
    information.  The login could be bypassed by the URL:

        http://server/cd/../config/html/cnf_gi.htm

    The  server  seems   to  check  access   permissions  before   URL
    conversion.  Infosec would like to thank Peter Berggren and  Johan
    Diedrichs at Axis for their involvement with testing and supplying
    patch information.

SOLUTION

    Infosec and Axis recommends  customers to upgrade their  StorPoint
    Software.  The  current version is  4.28 and is  not vulnerable to
    this attack:

        http://www.se.axis.com/techsup/cdsrv/storpoint_cd/index.html