Description
FlexWATCH Network video server 132 allows remote attackers to bypass authentication and gain administrative privileges via an HTTP request to aindex.htm that contains double leading slashes (//).
Exploits (1)
exploitdb
WRITEUP
VERIFIED
by slaizer · textremotehardware
https://www.exploit-db.com/exploits/23317
References (6)
Core 6
Core References
Exploit, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/10132
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/13567
Exploit x_refsource_misc
http://packetstormsecurity.nl/0310-exploits/FlexWATCH.txt
Exploit vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/8942
Exploit vdb-entry
x_refsource_sectrack
http://securitytracker.com/id?1008049
Patch, Vendor Advisory vdb-entry
x_refsource_osvdb
http://www.osvdb.org/2842
Scores
EPSS
0.0694
EPSS Percentile
91.5%
Details
Status
published
Products (2)
seyeon/flexwatch_network_video_server
2.2
seyeon/flexwatch_network_video_server
model_132
Published
Oct 30, 2003
Tracked Since
Feb 18, 2026