CVE-2003-1386 Information

Description

AXIS 2400 Video Server 2.00 through 2.33 allows remote attackers to obtain sensitive information via an HTTP request to /support/messages which displays the server’s /var/log/messages file.

Reference

http://archives.neohapsis.com/archives/bugtraq/2003-02/0377.html http://archives.neohapsis.com/archives/bugtraq/2003-03/0370.html http://www.securityfocus.com/bid/6980 http://www.websec.org/adv/axis2400.txt.html https://exchange.xforce.ibmcloud.com/vulnerabilities/11440