This vulnerability kown as CVE-2018-9995 (with proof of concept (PoC) code) affects a wide range of DVR/NVR devices.
Exploiting the vulnerability leads to credentials disclosure and device takeover.
Severity: high
Fingerprint: f46dea8d13f5e4cabc3c1a7178c416ff78c416ff78c416ff78c416ff78c416ff
Running generic DVR software vulnerable to CVE-2018-9995 Found 3 users in the user list
Open service 85.105.226.236:85
2024-12-22 00:07
HTTP/1.0 302 Found HTTP/1.0 302 Found content-type: text/html; charset=UTF-8 P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT' Location: /login.rsp Page title: 302 Moved <HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8"><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>The document has moved<A HREF='/login.rsp'>here</a></BODY></HTML>
Open service 85.105.226.236:85
2024-12-11 23:24
HTTP/1.0 302 Found HTTP/1.0 302 Found content-type: text/html; charset=UTF-8 P3P: CP='IDC DSP COR ADM DEVi TAIi PSA PSD IVAi IVDi CONi HIS OUR IND CNT' Location: /login.rsp Page title: 302 Moved <HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8"><TITLE>302 Moved</TITLE></HEAD><BODY><H1>302 Moved</H1>The document has moved<A HREF='/login.rsp'>here</a></BODY></HTML>