Computer techologies

Vulnerabilities allow you to crack the Diqee 360 ​​robotic vacuum cleaner and spy on its owners

");} else {$ ('# mpu0-desktop'). ();

Positive Technologies specialists disclosed data on two vulnerabilities (CVE-2018-10987 and CVE-2018-10988) in Chinese robots-vacuum cleaners Diqee 360. Due to these bugs, the attacker can execute arbitrary code on the device with superuser privileges, which allows to completely intercept the control of the vacuum cleaner.

Experts say that just like any other IoT device, compromise However, this is far from the worst consequences of potential hacking. The fact is that Diqee 360 ​​supports Wi-Fi, equipped with a night vision camera, and you can control their navigation from a regular smartphone. As a result, a hacked robot vacuum cleaner can become an excellent spy gadget in the hands of criminals.

CVE-2018-10987 vulnerability can be exploited remotely. And although the attacker needs to be authenticated to use the vulnerability, Positive Technologies experts write that the default account on all Diqee 360 ​​devices has a password of 888888 by default, and not all users guess the credentials.

As a result, the attacker should only send the device to the device The UDP package is designed and executed the necessary command from under root. The root of the problem lies in REQUEST_SET_WIFIPASSWD (UDP command 153), that is, the malicious package runs /mnt/skyeye/mode_switch.sh% s, where the variable% s is controlled by the criminal.

The second vulnerability, CVE-2018-10988, can only be exploited physical access to the device. However, the consequences of such an attack can be very serious: an attacker can easily modify or replace the firmware of a vacuum cleaner by simply inserting a microSD card into the vulnerable device. The fact is that in the search for an updated firmware, the upgrade process refers to the address /mnt/sdcard/$PRO_NAME/upgrade.sh or /sdcard/upgrage_360/upgrade.sh on the map. No checks of signatures and file integrity before the code is executed.

Although Positive Technologies analysts have long notified the manufacturer about bugs, patches for them have not been released yet. Worse, researchers believe that other IOT devices by the manufacturer, which also produces DVR, video surveillance cameras and smart doorbells, may be subject to similar problems.

Let me remind you that this is not the first time that vulnerabilities have been detected in robotic vacuum cleaners. In 2017 similar problems were found in vacuum cleaners LG. Bugs also made it possible to turn a smart gadget into an ideal spy.

Photo: Gizmodo