20 matches found
EUVD-2015-4484
Malware in sbrugna...
Unauthorized Access Vulnerability in KGuard DVRs
KGuard has been actively creating an integrated platform for smart grid surveillance and has been carefully managing its own brand, KGuard, for many years, and its main products include the Home Security ComboKit, a DIY kit for digital surveillance video recorders. An unauthorized access...
KGUARD DVR 未授权命令执行漏洞
...
New Mirai-Inspired Botnet Could Be Using Your KGUARD DVRs in Cyber Attacks
Cybersecurity researchers on Thursday revealed details about a new Mirai-inspired botnet called "miraiptea" that leverages an undisclosed vulnerability in digital video recorders DVR provided by KGUARD to propagate and carry out distributed denial-of-service DDoS attacks. Chinese security firm...
VulnCheck KEV: CVE-2015-4464
Kguard Digital Video Recorder 104, 108, v2 does not have any authorization or authentication between an ActiveX client and the application server...
Multiple Vulnerabilities in Kguard Digital Video Recorder
The Kguard Digital Video Recorder DVR is a digital hard disk recorder from Kguard. Kguard DVR suffers from security bypass, information disclosure, denial of service, and command injection vulnerabilities. An attacker can exploit these vulnerabilities to execute arbitrary commands in the context ...
CVE-2015-4464
Kguard Digital Video Recorder 104, 108, v2 does not have any authorization or authentication between an ActiveX client and the application server...
Authentication flaw
Kguard Digital Video Recorder 104, 108, v2 does not have any authorization or authentication between an ActiveX client and the application server...
CVE-2015-4464
Kguard Digital Video Recorder 104, 108, v2 does not have any authorization or authentication between an ActiveX client and the application server...
CVE-2015-4464
The CVE-2015-4464 entry describes a vulnerability in Kguard Digital Video Recorder models 104/108/v2 where there is no authorization or authentication between the ActiveX client and the application server. The issue enables a remote attacker to bypass authentication/authorization via network acce...
Kguard Digital Video Recorder Security Bypass Vulnerability
The Kguard Digital Video Recorder DVR is a digital hard disk recorder from Kguard. A security bypass vulnerability exists in Kguard Digital Video Recorder. An attacker could use this vulnerability to bypass authentication mechanisms and perform unauthorized operations...
Kguard Digital Video Recorder Information Disclosure Vulnerability
The Kguard Digital Video Recorder DVR is a digital hard disk recorder from Kguard. An information disclosure vulnerability exists in Kguard Digital Video Recorder, which allows attackers to exploit the vulnerability to obtain sensitive information...
Kguard Digital Video Recorder Denial of Service Vulnerability
The Kguard Digital Video Recorder DVR is a digital hard disk recorder from Kguard. A denial of service vulnerability exists in Kguard Digital Video Recorder. An attacker could exploit this vulnerability to launch a denial of service attack...
Kguard Digital Video Recorder Command Injection Vulnerability
The Kguard Digital Video Recorder DVR is a digital hard disk recorder from Kguard. A command injection vulnerability exists in Kguard Digital Video Recorder. An attacker could use this vulnerability to execute arbitrary commands within the context of an affected application...
CVE-2015-4464 Insufficient Authorization Checks Request Handling Remote Authentication Bypass for Kguard Digital Video Recorders
CVEID: CVE-2015-4464 SUBJECT: Insufficient Authorization Checks Request Handling Remote Authentication Bypass for Kguard Digital Video Recorders DESCRIPTION: A deficiency in handling authentication and authorization has been found with Kguard 104/108/v2 models. While password-based authentication...
Kguard Digital Video Recorder Bypass Issues Vulnerability
A deficiency in handling authentication and authorization has been found with Kguard 104/108/v2 models. While password-based authentication is used by the ActiveX component to protect the login page, all the communication to the application server at port 9000 allows data to be communicated...
Kguard Digital Video Recorder Bypass Issues
CVEID: CVE-2015-4464 SUBJECT: Insufficient Authorization Checks Request Handling Remote Authentication Bypass for Kguard Digital Video Recorders DESCRIPTION: A deficiency in handling authentication and authorization has been found with Kguard 104/108/v2 models. While password-based authentication...
Multiple Vulnerabilities with Kguard Digital Video Recorders
MULTIPLE VULNERABILITIES WITH KGUARD DIGITAL VIDEO RECORDERS, February 10, 2015 PRODUCT DESCRIPTION The Kguard SHA104 & SHA108 are 4ch/8ch H.264 DVRs designed for economical application. It's stylish & streamlines hardware design and excellent performance can be fast moving, competitive and an...
Kguard SHA104 / SHA108 Bypass / Command Injection
MULTIPLE VULNERABILITIES WITH KGUARD DIGITAL VIDEO RECORDERS, February 10, 2015 PRODUCT DESCRIPTION The Kguard SHA104 & SHA108 are 4ch/8ch H.264 DVRs designed for economical application. It's stylish & streamlines hardware design and excellent performance can be fast moving, competitive and an...
Ray Sharp DVR Password Retriever
This module takes advantage of a protocol design issue with the Ray Sharp based DVR systems. It is possible to retrieve the username and password through the TCP service running on port 9000. Other brands using this platform and exposing the same issue may include Swann, Lorex, Night Owl, Zmodo,...