CVE-2004-1650

D-Link DCS-900 Internet Camera - Unauthenticated IP Address Change via UDP Broadcast

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1650. PoCs published by anonymous.

AI-analyzed exploit summary This exploit sends a crafted UDP broadcast packet to D-Link DCS-900 cameras, allowing an attacker to change their IP address without authentication. The payload is hardcoded to set the camera's IP to 10.0.50.34 (0a 00 32 32 in hex).

Description

D-Link DCS-900 Internet Camera listens on UDP port 62976 for an IP address, which allows remote attackers to change the IP address of the camera via a UDP broadcast packet.

Exploits (1)

exploitdb WORKING POC VERIFIED

by anonymous · cremotehardware

https://www.exploit-db.com/exploits/425

View Code ZIP pw:eip

This exploit sends a crafted UDP broadcast packet to D-Link DCS-900 cameras, allowing an attacker to change their IP address without authentication. The payload is hardcoded to set the camera's IP to 10.0.50.34 (0a 00 32 32 in hex).

Classification

Working Poc 95%

Attack Type

Other

Complexity

Trivial

Reliability

Reliable

Target: D-Link DCS-900 IP Camera

No auth needed

Prerequisites: Network access to the local broadcast domain · Presence of vulnerable D-Link DCS-900 cameras

MITRE ATT&CK