[webapps] Compro Technology IP Camera - 'killps.cgi' Denial-of-Service (DoS)
2021-09-02 17:12:30 Author: www.exploit-db.com(查看原文) 阅读量:44 收藏
2021-09-02 17:12:30 Author: www.exploit-db.com(查看原文) 阅读量:44 收藏
# Exploit Title: Compro Technology IP Camera - 'killps.cgi' Denial-of-Service (DoS)
# Date: 2021-09-30
# Exploit Author: icekam,xiao13,Rainbow,tfsec
# Software Link: http://www.comprotech.com.hk/
# Version: Compro IP70 2.08_7130218, IP570 2.08_7130520, IP60, TN540
# CVE : CVE-2021-40378
There is a backdoor prefabricated in the device in this path. Accessing the
file through the browser after logging in will cause the device to delete
all data (including the data of the camera itself).
Payload:Visit this page after logging in
/cgi-bin/support/killps.cgi
please refer to:
https://github.com/icekam/0day/blob/main/Compro-Technology-Camera-has-multiple-vulnerabilities.md
文章来源: https://www.exploit-db.com/exploits/50250
如有侵权请联系:admin#unsafe.sh
如有侵权请联系:admin#unsafe.sh