For HomeFor BusinessFor Partners
IoT Research Whitepapers
1 min read

Cracking the Victure PC420 Camera and IPC360 Platform - RCE, Unauthorized Streaming and More

Bitdefender

August 30, 2021

Promo Protect all your devices, without slowing them down.
Free 30-day trial
Cracking the Victure PC420 Camera and IPC360 Platform - RCE, Unauthorized Streaming and More

Baby monitors have become essential tools for keeping an eye on kids and nannies when away. Most cameras on the market are packed with features, ranging from real-time or motion-detection recording to two-way communication and anything in between. As households get increasingly interconnected and crammed with video and audio sensors, privacy becomes more important than ever.

While looking into the Victure IPC360 Camera, we have identified several vulnerabilities that allow an outside attacker to access the camera feed or disable encryption of streams stored on the cloud. Additionally, an attacker sharing a network with the camera can enable the RTSP and ONVIF protocols or exploit a stack-based buffer overflow to completely hijack the device.

Key findings

  • AWS bucket missing access control
  • Camera information disclosure
  • Remote control of cameras
  • Local stack-based buffer overflow leading to remote code execution, described in CVE-2020-15744
  • Hardcoded RTSP credentials

One platform, several vulnerabilities

The Victure IPC360 cloud platform allows querying arbitrary user accounts without authentication.

The identifiers for the user accounts are simple numbers between 1.000.000 and 60.000.000 and are assigned incrementally (thus easy to predict) for each user. The numbers are split in ranges for each geographical region. Querying a user ID (again, no authentication needed) returns a reply from the platform with full details of that account, including the identifiers for devices associated. With that information, an attacker can access the devices of all users. Based on the user IDs we received while testing, we estimate the number of potentially affected victims at roughly 4.000.000

The IPC360 cloud platform serves several other camera models, such as the Mibao Wireless IP Outdoor Camera, the Akaso P50 and the Robicam Waterproof 360. We estimate that these vulnerabilities are affecting more than 4 million devices worldwide.

Our researchers are regularly inspecting IoT devices and platforms to identify vulnerabilities and develop new mitigations in the Bitdefender IoT Security Platform.

Download the whitepaper here

tags

IoT Research Whitepapers

Author

Bitdefender

Bitdefender

The meaning of Bitdefender’s mascot, the Dacian Draco, a symbol that depicts a mythical animal with a wolf’s head and a dragon’s body, is “to watch” and to “guard with a sharp eye.”

View all posts

Right now Top posts

EyeSpy - Iranian Spyware Delivered in VPN Installers
Anti-Malware Research Whitepapers

EyeSpy - Iranian Spyware Delivered in VPN Installers

January 11, 2023

2 min read
Bitdefender Partnership with Law Enforcement Yields MegaCortex Decryptor
Anti-Malware Research Free Tools

Bitdefender Partnership with Law Enforcement Yields MegaCortex Decryptor

January 05, 2023

1 min read
BackdoorDiplomacy Wields New Tools in Fresh Middle East Campaign
Anti-Malware Research Whitepapers

BackdoorDiplomacy Wields New Tools in Fresh Middle East Campaign

December 06, 2022

1 min read
Side-Loading OneDrive for profit – Cryptojacking campaign detected in the wild
Anti-Malware Research

Side-Loading OneDrive for profit – Cryptojacking campaign detected in the wild

October 05, 2022

1 min read

FOLLOW US ON SOCIAL MEDIA

You might also like

App Anomaly Detection Technology From Bitdefender to Protect Against Yet-Unknown Threats
Miscellaneous

App Anomaly Detection Technology From Bitdefender to Protect Against Yet-Unknown Threats
Silviu STAHIE

May 11, 2023

3 min read
Bitdefender Releases Decryptor for MortalKombat Ransomware
Free Tools

Bitdefender Releases Decryptor for MortalKombat Ransomware
Bitdefender

February 28, 2023

1 min read
Weaponizing POCs – a Targeted Attack Using CVE-2022-47966
Anti-Malware Research

Weaponizing POCs – a Targeted Attack Using CVE-2022-47966
Victor VRABIE

February 23, 2023

5 min read

Bookmarks

loader