![]() BE LIABLE # FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY OR # CONSEQUENTIAL DAMAGES RESULTING FROM THE USE OR MISUSE OF # THIS SOFTWARE. # poc.py # The contents of this software are copyright (c) 2013 CORE Security and (c) 2013 CoreLabs, # and are licensed under a Creative Commons Attribution Non-Commercial Share-Alike 3.0 (United States) # License: # THIS SOFTWARE IS PROVIDED ``AS IS'' AND ANY EXPRESS OR IMPLIED # WARRANTIES ARE DISCLAIMED. You should see the RTSP live video stream i.e., the RTSP basic authentication can by bypassed by a remote attacker.A dialog box will asks for user/password, just click 'OK'.Enter the following network URL: rtsp://localhost:9999/live.sdp.Open a VLC media player and go to: Media > Open Network Stream.(Assuming that the camera is located in 192.168.1.1) Run poc.py with these parameters: python poc.py 9999 192.168.1.1 554.Set the camera RTSP authentication to 'basic'.In order to run the proof of concept, follow the next steps: This vulnerability is triggered by sending specially crafted RTSP packets to remote TCP port 554. Technical Description / Proof of Concept Code 7.1. The publication of this advisory was coordinated by Fernando Miranda from Core Advisories Team. The PoC of was made by Martin Di Paola with help of Martin Rocha from Core Development Team. This vulnerability was discovered and researched by Martin Di Paola from Core Security QA Team. Filter RTSP traffic (default port 554) if possible.Do not expose the camera to internet unless absolutely necessary. ![]() Some mitigation actions for this issue may be: Vendor released the beta firmware 0301c and notifies that it should be the formal release contact vendor for further information. Vendor Information, Solutions and Workarounds Other Vivotek cameras and firmware are probably affected too, but they were not checked.ĥ. This vulnerability was tested against Vivotek IP cameras IP7160, IP7361 and IP8332. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |