![[Silicon Defense logo]](../SDlogo.gif)
|
SnortSnarf signature pageSERVER-WEBAPP MVPower DVR Shell arbitrary command execution attemptSnortSnarf v021111.1 |
| Signature section (933) | Top 20 source IPs | Top 20 dest IPs |
23 alerts with this signature using input module SnortFileInput, with sources:
Earliest such alert at 19:02:32.480786 on 01/16/2021
Latest such alert at 14:19:15.233789 on 05/08/2021
| SERVER-WEBAPP MVPower DVR Shell arbitrary command execution attempt | 21 sources | 1 destinations |
| Priority: 1 | Classification: Attempted Administrator Privilege Gain | |
| [url:www.pentestpartners.com/blog/pwning-cctv-cameras/] [sid:42857] | ||
| Source | # Alerts (sig) | # Alerts (total) | # Dsts (sig) | # Dsts (total) |
| 123.205.119.131 | 2 | 2 | 1 | 1 |
| 74.80.28.217 | 2 | 2 | 1 | 1 |
| 190.112.244.170 | 1 | 1 | 1 | 1 |
| 70.106.217.87 | 1 | 1 | 1 | 1 |
| 197.89.76.28 | 1 | 1 | 1 | 1 |
| 61.2.21.246 | 1 | 1 | 1 | 1 |
| 103.92.120.204 | 1 | 1 | 1 | 1 |
| 78.181.85.197 | 1 | 1 | 1 | 1 |
| 191.240.103.137 | 1 | 1 | 1 | 1 |
| 39.63.27.184 | 1 | 1 | 1 | 1 |
| 83.66.123.87 | 1 | 1 | 1 | 1 |
| 80.2.140.189 | 1 | 1 | 1 | 1 |
| 186.240.170.60 | 1 | 1 | 1 | 1 |
| 60.237.99.133 | 1 | 1 | 1 | 1 |
| 60.31.158.59 | 1 | 1 | 1 | 1 |
| 37.152.207.21 | 1 | 1 | 1 | 1 |
| 78.100.194.80 | 1 | 1 | 1 | 1 |
| 178.236.220.236 | 1 | 1 | 1 | 1 |
| 180.151.91.161 | 1 | 1 | 1 | 1 |
| 190.117.127.2 | 1 | 1 | 1 | 1 |
| 188.52.71.72 | 1 | 1 | 1 | 1 |
| Destinations | # Alerts (sig) | # Alerts (total) | # Srcs (sig) | # Srcs (total) |
| 192.168.0.38 | 23 | 929 | 21 | 557 |