Apache 2.4.52
tcp/8085
Microsoft-IIS 7.5
tcp/8084
This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).
Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device
Severity: high
Fingerprint: 321975614123c6c05f83e99bf30ea5eb22cca46022cca46022cca46022cca460
Found HiSiliconDVR firmware: Hardware: General AHB7008T-MHV2 Vulnerable to multiple issues : LFI, possibly RCE
Open service 103.101.231.114:8085
2024-09-10 02:27
HTTP/1.1 302 Found Date: Tue, 10 Sep 2024 02:27:16 GMT Server: Apache/2.4.52 (Ubuntu) Location: dipv2/ Content-Length: 0 Connection: close Content-Type: text/html; charset=UTF-8
Open service 103.101.231.114:8084
2024-09-09 20:22
HTTP/1.1 200 OK Content-Type: text/html Last-Modified: Thu, 13 Feb 2014 13:46:48 GMT Accept-Ranges: bytes ETag: "ac9698ac228cf1:0" Server: Microsoft-IIS/7.5 X-Powered-By: ASP.NET Date: Mon, 09 Sep 2024 20:19:21 GMT Connection: close Content-Length: 689 Page title: IIS7 <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <title>IIS7</title> <style type="text/css"> <!-- body { color:#000000; background-color:#B3B3B3; margin:0; } #container { margin-left:auto; margin-right:auto; text-align:center; } a img { border:none; } --> </style> </head> <body> <div id="container"> <a href="http://go.microsoft.com/fwlink/?linkid=66138&clcid=0x409"><img src="welcome.png" alt="IIS7" width="571" height="411" /></a> </div> </body> </html>