Hikvision a network camera to the anonymous user to bypass the login permissions-bug warning-the black bar safety net

ID MYHACK58:62201566733
Type myhack58
Reporter 佚名
Modified 2015-09-09T00:00:00


Network Camera firmware internal for the convenience of visitors to access, curing an anonymous account, which in most cases is disabled, but can be a base64 hard-coded way to create a cookie to bypass the login permissions review.

User: anonymous

Password:\1 7 7\1 7 7\1 7 7\1 7 7\1 7 7\1 7 7


Vulnerability proof:

Since the user name and password can not be directly used for landing must be fake a cookie. Here use the Firefox firebug extension Tool, the main steps are as follows:

1. Open the Network Camera the login page, generate the initialization of the cookie.

  1. Use the firebug extension tools, create a named“userInfo80”of the cookie, the path is"/", value:"YW5vbnltb3VzOlwxNzdcMTc3XDE3N1wxnzdcmtc3xde3nw==",means"user:pass"to base64 hard-coded format.


3. Browser request asp


Repair solutions:

The proposal to abolish the curing in the inner portion of the anonymous user.