Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 Denial Of Service
[Suggested description]An issue was discovered on Sannce Smart HD Wifi Security Camera EAN 2 950004 595317 devices.
A crash and reboot can be triggered by crafted IP traffic, as demonstrated by the Nikto vulnerability scanner.
For example, sending the 111111 string to UDP port 20188 causes a reboot. To deny service for a long time period,
the crafted IP traffic may be sent periodically.
A crash and reboot can be triggered by crafted IP traffic, as demonstrated by the Nikto vulnerability scanner.
For example, sending the 111111 string to UDP port 20188 causes a reboot. To deny service for a long time period,
the crafted IP traffic may be sent periodically.
——————————————
[VulnerabilityType Other]Denial of Service due to incorrect error handling——————————————
[Vendor of Product]Sannce——————————————
[Affected Product Code Base]Sannce Smart HD Wifi Security Camera – EAN nr: 2 950004 595317——————————————
[Affected Component]Webserver, custom UDP handling binary.——————————————
[Attack Type]Remote——————————————
[Impact Denial of Service]true——————————————
[Attack Vectors]Any attacker capable of reaching the device with a network packet is capable of causing a DoS.——————————————
[Has vendor confirmed or acknowledged the vulnerability?]true——————————————
[Discoverer]Willem Westerhof, Jasper Nota, Martijn Baalman from Qbit cyber security in cooperation with the Dutch Consumer organisation.——————————————
[Reference]https://www.sannce.comUse CVE-2019-20463.
آسیبپذیریهای جدید و وصلههای امنیتی بهصورت مداوم منتشر میشوند و عدم بروزرسانی بهموقع میتواند امنیت سرویسهای حیاتی را به خطر بیندازد. خدمات مدیریت و پشتیبانی سرور آفاق هاستینگ شامل پایش امنیتی، بروزرسانی نرمافزارها، نصب Patchهای امنیتی و سختسازی سرورها است.
خدمات مدیریت و امنیت سرور