Owning a Wireless Camera, Its User and Its Network

Posted by Zonk on Saturday September 15, 2007 @06:16AM from the is-that-owning-or-pwning dept.

twistedmoney99 writes "InformIT has posted a two part article by Seth Fogie that describes how a wireless IP camera can be owned and abused. The first part describes how the camera's feed can be sniffed, replaced, or even DoSed off the air by a PDA. The second part then takes a look at the web application interface of the camera (an Axis207W) and exposes numerous vulnerabilities that lead to exposed passwords, a software based DoS, global XSS — and the kicker — a CRSF attack through which an attacker can remotely penetrate the network it is installed on."

1 of 59 comments (clear)

Min score:

Reason:

Sort:

not too surprizing by Anonymous Coward · 2007-09-15 06:25 · Score: 3, Interesting

Some IP cameras don't even need to be DoS'd, leave 'em out in the sun for 2 hours and they overheat... in fact, try to pull a stream from them and half the time they overheat. And we're talking about several hundreds of dollars worth of equipment rendered worthless by a bit of sunlight.