Message Image

Skip main navigation (Press Enter).

Endpoint Protection Small Business Edition

View Only

Back to discussions

Expand all | Collapse all

Web Attack: CCTV-DVR Remote Code Execution

Migration UserJun 01, 2017 07:38 AM

Hello, we got this alert message from our symantec on cloud: A high-risk intrusion was detected ...

ℬrίαηJun 01, 2017 07:40 AM

You can read their brief write up here: https://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=29627 ...

Migration UserJun 04, 2017 03:03 AM

Hello, thanks for your reply. it opens empty link. see attached file.

1. Web Attack: CCTV-DVR Remote Code Execution

0 Recommend
Migration User
Posted Jun 01, 2017 07:38 AM

Reply Reply Privately
Hello,

we got this alert message from our symantec on cloud:

A high-risk intrusion was detected on [Machine name on our cloud] within group Default Group on 5/3/2017 8:49:52 AM.

IPS Alert Name
Attack: an intrusion attempt was blocked.

Status
Blocked

Attack Signature
Web Attack: CCTV-DVR Remote Code Execution

Targeted Application
SYSTEM

Targeted Port Number
80

Targeted Host Name
N/A

Few questions on this:

1. what is it the "CCTV-DVR Remote Code Execution" ?

2.Do we need to do something to be protected from it?

Thanks.
2. RE: Web Attack: CCTV-DVR Remote Code Execution

0 Recommend
ℬrίαη
Posted Jun 01, 2017 07:40 AM

Reply Reply Privately
You can read their brief write up here:

https://www.symantec.com/security_response/attacksignatures/detail.jsp?asid=29627

I wold identify the device and ensure it is fully up to date on it's firmware. You may need to contact the vendor to assist with this.
3. RE: Web Attack: CCTV-DVR Remote Code Execution

0 Recommend
Migration User
Posted Jun 04, 2017 03:03 AM
| view attached

Reply Reply Privately
Hello,

thanks for your reply.

it opens empty link.

see attached file.

Attachment(s)

symantec_0.docx 37 KB 1 version

Copyright 2019. All rights reserved.

Powered by Higher Logic