The blue cables represent the UTP cables connecting the devices in the local network. Take a look at the network diagram below, you can see a Hikvision DVR connected to a router and to a laptop.
#RAYSHARP DVR SOFTWARE HOW TO#
If you are looking for this information, please read my other article: How to access Hikvision DVR from mobile. Javascript is disabled.I want to make sure you are reading the correct article. Filter by content: Vendor has issued information. Overview Digital Video Recorders DVRssecurity cameras, and possibly other devices from multiple vendors use a firmware derived from Zhuhai RaySharp that contains a hard-coded root password. Home Notes Current: VU Zhuhai Raysharp firmware for DVRs from multiple vendors contains hard-coded credentials. If you have feedback, comments, or additional information about this vulnerability, please send us email. However, the credentials are still hard-coded. While some Swann models use Raysharp code, Swann has stated that they do not use the same default hard-coded credentials provided by Raysharp. Ray Sharp CCTV DVR Password Retrieval & Remote Root Swann's Tech Center can help guide users through this process if necessary. If the user requires remote access to their unit then we recommend that the user changes the numbers of the internal network "Ports" to use non-standard values that are not easily discovered and make random access very difficult. Until such time as Swann are able to secure updated firmware for these models we recommend that the units are disconnected from the user's network to prevent malicious access. Restrict network access Use a firewall or similar technology to restrict access to trusted hosts, networks, and services. If your vendor does not have an updated firmware available at this time, you may consider the following mitigations. Please contact your device manufacturer for more information.
#RAYSHARP DVR SOFTWARE UPDATE#
Apply an update if possible Some vendors have released updated firmware to address this issue. An unauthenticated remote attacker may gain root access to the device. The Vendor List below provides more information on each manufacturer that was reported to be vulnerable. Furthermore, it was previously reported publicly that many of these devices enable remote access via telnet or port by default. Remote attackers with knowledge of the password may gain root access to the device. Digital Video Recorders DVRssecurity cameras, and possibly other devices from multiple vendors use a firmware derived from Zhuhai RaySharp that contains a hard-coded root password.