733 matches found
rtsp-url-brute NSE Script
Attempts to enumerate RTSP media URLS by testing for common paths on devices such as surveillance IP cameras. The script attempts to discover valid RTSP URLs by sending a DESCRIBE request for each URL in the dictionary. It then parses the response, based on which it determines whether the URL is...
Denial of Service Vulnerability in Cisco Video Surveillance IP Cameras
THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES TH...
Abus IP cameras multiple security vulnerabilities
Read/write files access and command execution...
Multiple IP Cameras Remote Command Execution
Multiple vulnerabilities in several IP camera products ====================================================== ADVISORY INFORMATION Title: Multiple vulnerabilities in several IP camera products Release date: 08/06/2011 Last update: 08/06/2011 Credits: Roberto Paleari, Emaze Networks S.p.A...
CVE-2010-4231
Directory traversal vulnerability in the web-based administration interface on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to read arbitrary files via a .. dot dot in the URI...
CVE-2010-4232
The web-based administration interface on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to bypass authentication via a // slash slash at the beginning of a URI, as demonstrated by the //system.html URI...
Directory traversal
Directory traversal vulnerability in the web-based administration interface on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to read arbitrary files via a .. dot dot in the URI...
Code injection
The web server on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to cause a denial of service device reboot via a large number of requests in a short time interval...
CVE-2010-4234
The web server on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote attackers to cause a denial of service device reboot via a large number of requests in a short time interval...
Default Password (merlin) for 'mg3500' Account
The account 'mg3500' on the remote host has the password 'merlin'. An attacker may leverage this issue to gain access to the affected system. Note that some Camtron IP cameras are reported to use these credentials by default. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "mg3500"...
Cisco Security Advisory: Vulnerabilities in Cisco Video Surveillance Products
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Vulnerabilities in Cisco Video Surveillance Products Advisory ID: cisco-sa-20090624-video Revision 1.0 For Public Release 2009 June 24 1600 UTC GMT +--------------------------------------------------------------------- Summary...
Owning Big Brother: How to Crack into Axis IP cameras
The research is made of two components: a purple paper and a video. The research doesn't just cover boring PoCs, but actual Hollywood-style exploits :- . Yes, this includes the classic attack in which the legitimate video stream gets replaced by another stream that keeps looping forever! In the...
CVE-2024-35344
Certain Anpviz products contain a hardcoded cryptographic key stored in the firmware of the device. This affects IPC-D250, IPC-D260, IPC-B850, IPC-D850, IPC-D350, IPC-D3150, IPC-D4250, IPC-D380, IPC-D880, IPC-D280, IPC-D3180, MC800N, YM500L, YM800NN2, YMF50B, YM800SV2, YM500L8, and YM200E10...