10 matches found
Exploit for CVE-2018-9995
CVE-2018-9995 Exploit Tool for Python3 This Python script is d...
Hackers Exploiting 5-year-old Unpatched Vulnerability in TBK DVR Devices
Threat actors are actively exploiting an unpatched five-year-old flaw impacting TBK digital video recording DVR devices, according to an advisory issued by Fortinet FortiGuard Labs. The vulnerability in question is CVE-2018-9995 CVSS score: 9.8, a critical authentication bypass issue that could b...
Exploit for CVE-2018-9995
Tool CVE-2018-9995-2 CVE: CVE-2018-9995...
TBKvision Firmware Authentication Bypass (CVE-2018-9995)
An authentication bypass vulnerability exists in TBKvision Firmware. Successful exploitation of this vulnerability would allow remote attackers to gain unauthorized access into the affected system...
DVR-Exploiter - Bash Script Program Exploit The DVR's Based On CVE-2018-9995
DVR-Exploiter Exploit Title: DVR Credentials Exposed Date: 09/04/2018 Exploit Author: Fernandez Ezequiel DVR-Exploiter By: Belahsan Ouerghi Contact: www.facebook.com/ouerghi.belahsan Youtube Tutorial: https://www.youtube.com/watch?v=vdnATjE4II Dorks: intitle:"DVR Login" html:"/login.rsp" "Server:...
TBK DVR Login Bypass(CVE-2018-9995)
En un articulo anterior presente una vuln que me permitía obtener las credenciales de cierto modelo de DVR. Tan simple como: $ curl "http://:/device.rsp?opt=user&cmd=list" -H "Cookie: uid=admin" Resulta que el hallazgo no corresponde a un vendor en particular como originalmente supuse. Me...
CVE-2018-9995
creationtimestamp| type| source ---|---|--- 2018-05-01 19:13:40+00:00| published-proof-of-concept| https://t.me/canyoupwnme/3681 2018-05-11 06:42:49+00:00| published-proof-of-concept| https://t.me/antichat/1427 2018-06-16 19:58:31+00:00| seen| https://t.me/codebysec/1481 2018-10-25 13:37:37+00:00...
CVE-2018-9995
TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which run re-branded versions of the original TBK DVR4104 and DVR4216 series, allow remote attackers to bypass authentication via a "Cookie: uid=admin"...
CVE-2018-9995
CVE-2018-9995 affects TBK DVR4104/DVR4216 and re-branded variants (Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, MDVR Login). Root cause: authentication bypass via a crafted Cookie: uid=admin header, demonstrated by device.rsp?opt=user&cmd=list returning creden...
CVE-2018-9995
TBK DVR4104 and DVR4216 devices, as well as Novo, CeNova, QSee, Pulnix, XVR 5 in 1, Securus, Night OWL, DVR Login, HVR Login, and MDVR Login, which run re-branded versions of the original TBK DVR4104 and DVR4216 series, allow remote attackers to bypass authentication via a “Cookie: uid=admin”...