13 matches found
EUVD-2015-4106
Malware in sbrugna...
Doodle Smart app and Doodle Converter (smart socket) have a flawed logic vulnerability
Doodle Smart is an IoT cloud platform that connects brands, OEMs, developers and chain retailers with their intelligence needs, providing a one-stop AI IoT PaaS-level solution that covers hardware development, global cloud, and smart business platform development, providing comprehensive ecologic...
Geekbes Smart Socket Detection via HTTP
Binary data 700269.prm...
The firmware binary code of the simulation and exploit technology-vulnerability warning-the black bar safety net
In a previous article, we introduced a firmware analysis and extraction of the file system method. In this article we will further introduce how to in-depth analysis of firmware binaries, and then use its common security vulnerabilities. In this paper, we will relate to the following as shown in...
Midea's M-Smart smart socket has design logic flaws
M-Smart Smart Socket is a smart home appliance developed by Midea Group. Midea's M-Smart Smart Socket is susceptible to man-in-the-middle attacks due to insecure protocols for transmitting data and lack of validation of what is transmitted on the client and server side. The lack of effective...
Haier (Haier) HK-50C5WD Appliance Power Smart Security WI-FI Socket with Replay Attack Vulnerability
Haier Haier HK-50C5WD Home Appliance Bao Smart Security WI-FI Socket is a smart socket from Haier Qingdao. Haier HK-50C5WD Home Appliance Po Smart Security WI-FI Socket has a security vulnerability. Allows remote and near-field control of its on and off via a mobile app, which utilizes and analyz...
Hacking ipcam like Harold in POI-vulnerability warning-the black bar safety net
0x00 for ipcam attack mesh and preparation 0x01 for embedded devices parameter injection vulnerability to conventional weapons and methods of analysis 0x02 several wonderful case 0x03 Hacking like POI 0x00 preparation This time we discussed is the analysis of the smart camera firmware,through a...
Kankun Smart Socket Device and Mobile Application Local Security Bypass Vulnerability
Kankun Smart Socket device is a wireless smart socket. mobile application is a mobile application for wireless smart socket. The Kankun Smart Socket device and mobile application use hard-coded AES 256-bit keys, which allow remote attackers to sniff the network, obtain sensitive information or...
CVE-2015-4080
The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to 1 obtain sensitive information by sniffing the network and 2 obtain access to the device by encrypting messages...
Hardcoded credentials
The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to 1 obtain sensitive information by sniffing the network and 2 obtain access to the device by encrypting messages...
CVE-2015-4080
CVE-2015-4080 affects the Kankun Smart Socket device and its mobile app. The vulnerability stems from a hardcoded AES-256 key used to encrypt communications, enabling remote attackers on the local network to sniff traffic and potentially encrypt messages to gain access to the device. Public sourc...
CVE-2015-4080
The Kankun Smart Socket device and mobile application uses a hardcoded AES 256 bit key, which makes it easier for remote attackers to 1 obtain sensitive information by sniffing the network and 2 obtain access to the device by encrypting messages...
Kankun Smart Socket / Mobile App Hardcoded AES Key
Hi List, Vulnerability ============= Hardcoded AES 256 bit key used in Kankun IoT/Smart socket and its mobile App Vulnerability Description ========================== The kankun smart socket device and the mobile app use a hardcoded AES 256 bit key to encrypt the commands and responses between th...