An Interest In:
Web News this Week
- March 22, 2024
- March 21, 2024
- March 20, 2024
- March 19, 2024
- March 18, 2024
- March 17, 2024
- March 16, 2024
Some of Our Sources
- BoingBoing
- Engadget
- Just Creative
- The Logo Smith
- Vandelay Design
- Naldz Graphics
- Fudge Graphics
- CSS Tricks
- Codrops
- Android Headlines
Help Webnuz
Referal links:
May 6, 2018 08:10 pm
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/yL8ZaArFkxk/new-hacking-tool-lets-users-access-a-bunch-of-dvrs-and-their-video-feeds
New Hacking Tool Lets Users Access a Bunch of DVRs and Their Video Feeds
An anonymous reader writes: "An Argentinian security researcher named Ezequiel Fernandez has published a powerful new tool yesterday that can easily extract plaintext credentials for various DVR brands and grant attackers access to those systems, and inherently the video feeds they're supposed to record," reports Bleeping Computer. "The tool, named getDVR_Credentials, is a proof-of-concept for CVE-2018-9995, a vulnerability discovered by Fernandez at the start of last month, [affecting TBK DVR systems]. Fernandez discovered that by accessing the control panel of specific DVRs with a cookie header of 'Cookie: uid=admin,' the DVR would respond with the device's admin credentials in cleartext." Tens of thousands of vulnerable devices available online can be hijacked with their video feeds assembled in voyeur sites, like it's been done in the past.Read more of this story at Slashdot.
Original Link: http://rss.slashdot.org/~r/Slashdot/slashdot/~3/yL8ZaArFkxk/new-hacking-tool-lets-users-access-a-bunch-of-dvrs-and-their-video-feeds
Share this article:
Tweet
View Full Article
Slashdot
Slashdot was originally created in September of 1997 by Rob "CmdrTaco" Malda. Today it is owned by Geeknet, Inc..More About this Source Visit Slashdot