iSeeQ Hybrid DVR WH-H4 Stream Disclosure Vulnerability

A vulnerability allowing unauthorized access to live video streams has been identified in the iSeeQ Hybrid DVR WH-H4 versions 1.03R and 2.0.0.P. This unauthenticated issue arises in the 'get_jpeg' script, which can be exploited to retrieve video snapshots from specific camera channels by sending requests to the '/cgi-bin/get_jpeg' endpoint without any authentication.

Impact

Exploitation of this vulnerability leads to unauthorized access to live video streams, allowing attackers to intercept and save video snapshots from the DVR's camera channels.

Reproduction

To reproduce this vulnerability, send a request to the '/cgi-bin/get_jpeg' endpoint, including the desired channel number as a parameter. The request can be made without authentication. Once the request is sent, the DVR will respond with video snapshots from the specified channel. This process can be automated with a script that downloads multiple snapshots in succession and combines them into a video clip.