Vicon Authentication Bypass Vulnerability Published

From SecurityFocus:

Remote unauthenticated users can add an administrator, operator, or guest accounts to various Vicon network cameras by navigating directly to a specific URL. The URL is missing authentication and gives you direct access to the form that creates new accounts....

***:///******/********.***?******=***&*******=* . **** ** *******, * **** *** **** *** live ***** *** ***** ****** ********.

******** ******** *** ********
********* ** ********: *****, *****, *** *-****-**

Login to read this IPVM discussion.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.