Skip to content

grayoneday/CVE-2019-9653

master
Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?
Code

Latest commit

 

Git stats

Files

Permalink
Failed to load latest commit information.
Type
Name
Latest commit message
Commit time
pic
 
 
 
 

CVE-2019-9653

Date

  • Disclosure: 03/11/2019
  • Last updated: 03/15/2019

Summary

NUUO Inc. is a company providing a video-centric surveillance solution. They have many NVR (Network Video Recorder) products for different customers with various requirements. These NVRs are Linux embedded video recording systems that can manage several cameras. Nowadays, they are used worldwide by many public institutions, companies, banks, or individuals, etc. The web interface of these NVR systems contains a lot of critical vulnerabilities can be abused by unauthenticated attackers. We discover that some vulnerable PHP scripts are lack of authentication mechanism and input protection thus they could be abused to achieve remote code execution on NUUO's devices as root.

Range of Affected Product

Firmware version from 1.7.x to 3.3.x

Suggestion

Update to a newer version. The latest firmware version is 3.10.x.

Technical Details

The target that we were tested is firmware version 2.3.x. The following figure show the system information. image

For this vulnerability, you can modify the request parameters then forward to the target and turn Burpsuite interceptor from on to off. You can find that the target machine has responded command result in Burpsuite history message, refer to the following figure. image

Checking the permission of running command. image

Discoverer

Acknowledgement


About

No description, website, or topics provided.

Resources

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published