Skip to content
/ axis-rce Public

Proof of Concept for RCE and information leakage on vulnerable AXIS Network Cameras

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

mascencerro/axis-rce

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

64 Commits
srv
srv
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
axis-detect.py
axis-detect.py
 
 
poc.py
poc.py
 
 
shell.c
shell.c
 
 
simple_exploit.sh
simple_exploit.sh
 
 
takeover.py
takeover.py
 
 

Repository files navigation

PoC Exploit for AXIS Network Cameras

CVE-2018-10660 Shell Command Injection

CVE-2018-10661 Access Control Bypass

CVE-2018-10662 Exposed Insecure Interface

!!! FOR EDUCATIONAL PURPOSES !!!

  • Test device for vulnerability
  • Enable and modify overlay text on cam image
  • Arbitrary file read and output to image text overlay
  • Remote code execution
  • Optional takeover script with http content server

About

Proof of Concept for RCE and information leakage on vulnerable AXIS Network Cameras

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Languages