Bypassing Door Passwords
2023-7-10 01:5:50 Author: infosecwriteups.com(查看原文) 阅读量:29 收藏

sockpuppets

InfoSec Write-ups

Instead of a key, this type of lock system requires a numerical code to grant entry to a facility or property. The code is punched in by users via a numerical pad, similar to those on a basic calculator. If the correct code is entered, the door lock or deadbolt should release. Some mechanisms require batteries or a small electrical current to unlock.

Some keypad locks have an integrated security feature that keeps the door locked for a set amount of time (usually 10 to 15 minutes) after several incorrect attempts to enter the code.

The purpose of this research is to understand how insecure we live.

Audio Smart Lock
  1. Perkotek
  2. ERD-1120
  3. Efes Digital Panel
  4. Mas
  5. AC 13PX
  6. Burg Wachter
  7. DIP40
  8. Lorex LR-DPH2
  9. M100
  10. MB05–03
  11. MB DYF40
  12. MLŞ 14–70
  13. MLŞ 14–107
  14. MRA 101
  15. Netalsan Obsidian
  16. ONDRIVE ED07
  17. OP705
  18. OP M400
  19. OP M500
  20. Pratik Kart
  21. Desi Steely
  22. Audio
  23. Teknoline
  24. Teknoline IMR18
  25. Desi UTOPIC
  26. WL02
  27. D45
  28. A20 Kapı Kilidi
  1. #0000
  2. 0000
  3. 0411#
  4. 0571
  5. #0789
  6. 0880#
  7. 1014
  8. 1111
  9. 1200#
  10. #1234
  11. **1234
  12. 1234
  13. 1234#
  14. 1357#
  15. 1453
  16. 1629#
  17. 1881
  18. 1979/
  19. *1992#
  20. 2000
  21. 2013
  22. 2020
  23. 2020#
  24. **2510
  25. 2707#
  26. 2828
  27. 3263
  28. 4050#
  29. 4233#
  30. 4570#
  31. 5555
  32. 5656#
  33. 5689#
  34. 5757
  35. 6161
  36. **6565
  37. **6771
  38. 7305
  39. **7788
  40. #7889
  41. **7890
  42. 8182#
  43. #8888#
  44. 88888888
  45. 8988#
  46. 9575
  47. 991453
  48. 991903
  49. 992211
  50. 992525
  51. 998877
  52. C12341234
  53. c2638
  54. C6161

I try the admin password on “Audio Şifreli Kapı Kiliti” and it is successful. Now we can change all user’s passwords, close the alarm, delete all users.

Also, we don’t need to know the passwords, we can reset the admin password using some simple steps.

  • Push the reset button behind the box for 10 seconds.
  • Unplug the DT-8 socket and wait for 5 seconds and plug.
  • After 10 seconds passed, stop the pressing button and unplug the socket again at the same time.
  • After that, you can use default admin password :)

Until now, I try 3 Audio Door Locks and all of them have default passwords (including the admin password). You can contribute the statistics.

Contact me : [email protected]


文章来源: https://infosecwriteups.com/bypassing-door-passwords-4004b8d7995?source=rss----7b722bfd1b8d--bug_bounty
如有侵权请联系:admin#unsafe.sh