2007-10-19 10:00:00
mitre
PUBLISHED
AXIS 2400 Video Server 2.00 through 2.33 allows remote attackers to obtain sensitive information via an HTTP request to /support/messages, which displays the servers /var/log/messages file.