uc-httpd 1.0.0
tcp/81
This vulnerability (with proof of concept (PoC) code) affects DVR/NVR devices built using the HiSilicon hi3520d and similar system on a chip (SoC).
Exploiting the vulnerabilities lead to unauthorized remote code execution (RCE) using only the web interface, causing full takeover of the exploited device
Severity: high
Fingerprint: 321975614123c6c05f83e99b5905cd03664d4478664d4478664d4478664d4478
Found HiSiliconDVR firmware: Hardware: NOCRYPO AHD9708H_H Vulnerable to multiple issues : LFI, possibly RCE
Open service 92.27.239.237:81
2024-04-10 13:54
HTTP/1.1 200 OK Content-type: application/octet-stream Server: uc-httpd/1.0.0 Cache-Control: max-age=864000 Connection: Close <H1>Index of /mnt/web</H1> <p><a href="//mnt/web/..">..</a></p>
Open service 92.27.239.237:81
2024-03-21 09:40
HTTP/1.1 200 OK Content-type: application/octet-stream Server: uc-httpd/1.0.0 Cache-Control: max-age=864000 Connection: Close <H1>Index of /mnt/web</H1> <p><a href="//mnt/web/..">..</a></p>
Open service 92.27.239.237:81
2024-03-08 04:08
HTTP/1.1 200 OK Content-type: application/octet-stream Server: uc-httpd/1.0.0 Cache-Control: max-age=864000 Connection: Close <H1>Index of /mnt/web</H1> <p><a href="//mnt/web/..">..</a></p>
Open service 92.27.239.237:81
2024-03-07 16:47
HTTP/1.1 200 OK Content-type: application/octet-stream Server: uc-httpd/1.0.0 Cache-Control: max-age=864000 Connection: Close <H1>Index of /mnt/web</H1> <p><a href="//mnt/web/..">..</a></p>
Open service 92.27.239.237:81
2024-03-06 19:07
HTTP/1.1 200 OK Content-type: application/octet-stream Server: uc-httpd/1.0.0 Cache-Control: max-age=864000 Connection: Close <H1>Index of /mnt/web</H1> <p><a href="//mnt/web/..">..</a></p>