![]() I'd rather not specify what model/manufacturer it is, I have contacted them and have a fixed firmware update for it that they will be releasing, so I'm not going to reveal too much for the sake people with the DVR as I know people love messing with DVR's (4chan, etc). All i had to do was make a file with /etc/passwd in it and bingo, I had telnet access. ![]() Out of the 4 different brand DVR's I've tried, I was able to obtain root on all 4 using similar methods, one of them was just a pathetic oversight, it allowed updating by sending the correct commands to the DVR's remote command server to imitate an ftp_get of a file named and then extract it to / and reboot the DVR automatically. I'd be curious to look at the firmware and see if I can find a method to get into them. ![]() For Internet Explorer 9 and later, you must also disable ActiveXFiltering, if turned on. Mind posting what DVR/NVR model numbers you are looking into getting as well as if you can find some type of firmware update image for them? Also, be aware that there are many IP camera's that run the EXACT same ARM CPU's as the DVR's, using the same insecure HighEasy Linux distro/SDK, not only that they inherit some of the same instability issues as the Chinese DVR's sold. Scroll down to ActiveX controls and plugins and click Enable for: Run ActiveX controls and plugins Script ActiveX controls marked safe for scripting Click OK to close the dialog boxes, and then restart Internet Explorer.
0 Comments
Leave a Reply. |
Details
AuthorWrite something about yourself. No need to be fancy, just an overview. Archives
May 2023
Categories |