CVE-2013-3612 Information

Description

Dahua DVR appliances have a hardcoded password for (1) the root account and (2) an unspecified \backdoor\ account which makes it easier for remote attackers to obtain administrative access via authorization requests involving (a) ActiveX (b) a standalone client or (c) unknown other vectors.

Reference

http://www.kb.cert.org/vuls/id/800094