module

JVC/Siemens/Vanderbilt IP-Camera Readfile Password Disclosure

Try Surface Command
Back to search
Disclosed
Aug 16, 2016
Created
Mar 19, 2019

Description

SIEMENS IP-Camera (CVMS2025-IR + CCMS2025), JVC IP-Camera (VN-T216VPRU),
and Vanderbilt IP-Camera (CCPW3025-IR + CVMW3025-IR)
allow an unauthenticated user to disclose the username & password by
requesting the javascript page 'readfile.cgi?query=ADMINID'.
Siemens firmwares affected: x.2.2.1798, CxMS2025_V2458_SP1, x.2.2.1798, x.2.2.1235

Authors

Yakir Wizman
h00die

References

Module Options

To display the available options, load the module within the Metasploit console and run the commands 'show options' or 'show advanced':


    msf > use auxiliary/gather/ipcamera_password_disclosure
    msf auxiliary(ipcamera_password_disclosure) > show actions
        ...actions...
    msf auxiliary(ipcamera_password_disclosure) > set ACTION < action-name >
    msf auxiliary(ipcamera_password_disclosure) > show options
        ...show and set options...
    msf auxiliary(ipcamera_password_disclosure) > run
Title
NEW

Explore Exposure Command

Confidently identify and prioritize exposures from endpoint to cloud with full attack surface visibility and threat-aware risk context.

Try it today