CVE-2017-17107

Published: Dec 18, 2017

Modified: Aug 5, 2024

PUBLISHED

Description

Zivif PR115-204-P-RS V2.3.4.2103 web cameras contain a hard-coded cat1029 password for the root user. The SONIX operating system's setup renders this password unchangeable and it can be used to access the device via a TELNET session.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

https://twitter.com/silascutler/status/938052460328968192

x_refsource_MISC

20171212 Three exploits for Zivif Web Cameras (may impact others)

mailing-list

x_refsource_FULLDISC

http://packetstormsecurity.com/files/145386/Zivif-PR115-204-P-RS-2.3.4.2103-Bypass-Command-Injection-Hardcoded-Password.html

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-17107

Description

Affected Products

References