Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple models of the Uniview IP Camera (e.g., IPC_G6103 B6103.16.10.B25.201218, IPC_G61, IPC21, IPC23, IPC32, IPC36, IPC62, and IPC_HCMN) offer an undocumented UDP service on port 7788 that allows a remote unauthenticated attacker to overflow an internal buffer and achieve code execution. By using this buffer overflow, a remote attacker can start the telnetd service. This service has a hardcoded default username and password (root/123456). Although it has a restrictive shell, this can be easily bypassed via the built-in ECHO shell command.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Uniview IP Camera 安全漏洞
Vulnerability Description
Uniview IP Camera是中国宇视科技(Uniview)公司的一款摄像头。 Uniview IP Camera存在安全漏洞,该漏洞源于在端口7788 上提供未记录的UDP服务,允许未经身份验证的攻击者造成内部缓冲区溢出并实现代码执行。受影响的产品和型号:Uniview IP Camera IPC_G6103 B6103.16.10.B25.201218,IPC_G61,IPC21,IPC23,IPC32,IPC36,IPC62,IPC_HCMN。
CVSS Information
N/A
Vulnerability Type
N/A