Ingram icon indicating copy to clipboard operation
Ingram copied to clipboard
verified publisher icon jorhelp

No DVR capture for CVE-2021-33044

Open mflensburg opened this issue 3 years ago • 3 comments

Hi Jorhelp, are there any possibilities to have DVR snapshots for CVE-2021-33044 with zoomeye dork (":4c66" +title:"WEB SERVICE" +port:"80") as example. In most cases cameras password are the same as DVRs. In console: ./Console.py --logon loopback --rhost 192.168.57.20 --proto dhip --rport 80 config RemoteDevice

mflensburg avatar Aug 03 '22 20:08 mflensburg

This is theoretically possible, we have only used '--logon netkeyboard' devices, not '--logon loopback' devices, we will do some testing and submit a new version.

jorhelp avatar Aug 04 '22 02:08 jorhelp

Hello, Mflensburg, we have updated the repository, but we found that the passwds of many NVR devices are different from those of the camera devices. Do you know how to obtain the account&passwds of NVR devices?

jorhelp avatar Aug 05 '22 03:08 jorhelp

At this moment my knowledge dos not allow me to dig so much inside. One suggestion, while going through passwords of cameras, better to skip default passwords like admin:admin, as it anyway will be checked by week passwords module, so we can avoid a lot of false positives. Some times cameras have different passwords and only one is right.

mflensburg avatar Aug 06 '22 17:08 mflensburg