漏洞概要 关注数(24) 关注此漏洞
>
漏洞详情
披露状态:
2013-09-24: 积极联系厂商并且等待厂商认领中,细节不对外公开
2013-11-08: 厂商已经主动忽略漏洞,细节向公众公开
简要描述:
1:海康威视后台地址可通过社工+GHDB获得
(网上社工查找配置文件和默认口令,找到后台路径后GHDBinurl:doc/page/login.asp)
2: 使用默认口令可登录
详细说明:
1:网上社工查找配置文件和默认口令(admin/12345),找到后台路径后
2: GHDBinurl:doc/page/login.asp
3: 尝试弱口令破解
漏洞证明:
http://www.ptbctv.com:8080/doc/page/login.asp
http://raycommtech.com/doc/page/login.asp
http://baixarmsn2010.com/doc/page/login.asp
http://office.secueye.com/doc/page/login.asp
http://sfjb173.cctvdvr.com.tw/doc/page/login.asp
http://www.9calshotave.co.uk/doc/page/login.asp
http://bodega.olttransportes.com/doc/page/login.asp
http://oa.love109.com/doc/page/login.asp
http://www.ruipt.com:8018/doc/page/login.asp
http://mail.chandaranasupermarkets.co.ke/doc/page/login.asp(4S店)
http://office.secueye.com/doc/page/login.asp
http://kczzh.net/doc/page/login.asp
http://m-tronic.co.nz/doc/page/login.asp
http://wushanchengwai.net/doc/page/login.asp(餐厅)
http://fortunecon.dyndns.org/doc/page/login.asp(办公室)
http://oa.szamtic.com/doc/page/login.asp
http://186.30.249.15/doc/page/login.asp
http://regentpark.dvrdns.org/doc/page/login.asp
http://demo.ltsnj.com:8232/doc/page/login.asp
http://fortunecon.dyndns.org/doc/page/login.asp
修复方案:
1.建议隐藏后台登录地址,直接IP访问。
2.要求厂商安装修改弱口令
版权声明:转载请注明来源 Power_z_cd@乌云
>
漏洞回应
厂商回应:
未能联系到厂商或者厂商积极拒绝