Warning: Windows 7 Update Crashing NVRs

By: Brian Rhodes, Published on Aug 26, 2019

Windows 7 updates are causing VMS servers to fail to boot.

After running the update, impacted systems do not boot as normal, instead display this warning screen:

Windows 7 Update Crashing NVRs

In this note, we examine:

  • Which systems are impacted
  • What is causing the issue?
  • Vendor recommendations to fix
  • Dahua and Hikvision not impacted
  • End-of-Life Win 7 is coming
  • Is this a win for VSaaS?

The Problem

IPVM has received multiple reports of Windows 7 and Windows Server 2008R2 systems that will no longer boot after installing Microsoft 8/2019 Security update 'KB4512506 Security Monthly Quality Rollup'.

The problem occurs because this update uses now required SHA-2 signing, but mistakenly assumes the embedded OS servers and NVRs have been upgraded from SHA-1, which is not the case for many systems.

One site gave this explanation:

It looks like Microsoft forgot to make this update available for Windows 7 Embedded OS which installs the ability to use SHA-2 code signing.

As soon as the Aug 2019 security rollup update is installed, " KB4512506 " upon reboot, the OS indicates "Windows cannot verify the digital signature for this file " which of course is caused by the lack of the SHA-2 code sign support. I've had two NVR's go down due to this issue.

Below, we cover the impacted security vendors and how to fix the issue.

******* * ******* *** causing *** ******* ** fail ** ****.

***** ******* *** ******, impacted ******* ** *** boot ** ******, ******* display **** ******* ******:

Windows 7 Update Crashing NVRs

** **** ****, ** examine:

  • ***** ******* *** ********
  • **** ** ******* *** issue?
  • ****** *************** ** ***
  • ***** *** ********* *** impacted
  • ***-**-**** *** * ** coming
  • ** **** * *** for *****?

The *******

**** *** ******** ******** reports ** ******* * and ******* ****** ****** systems **** **** ** longer **** ***** ********** Microsoft */**** ******** ****** '********* ******** ******* ******* Rollup'.

*** ******* ****** ******* this ****** **** *** required ***-* *******, *** mistakenly ******* *** ******** OS ******* *** **** have **** ******** **** SHA-1, ***** ** *** the **** *** **** systems.

*** **** **** **** explanation:

** ***** **** ********* forgot ** **** **** update ********* *** ******* 7 ******** ** ***** installs *** ******* ** use ***-* **** *******.

** **** ** *** Aug **** ******** ****** update ** *********, " KB4512506 " **** ******, the ** ********* "******* cannot ****** *** ******* signature *** **** **** " ***** ** ****** is ****** ** *** lack ** *** ***-* code **** *******. *'** had *** ***'* ** down *** ** **** issue.

*****, ** ***** *** impacted ******** ******* *** how ** *** *** issue.

[***************]

Impacted ******* ****

**** *** **** ** attempted ******* **** * number ** ******* ** this *****. ******* ****** appears *****, **** **** experiencing **** ******* ** calls *** ** *** update, ***** ****** *** reporting ****:

  • ********:[******] ******** *** ********* that **** **** *** some ****** ** *** field **** ***** *******, but ** * ******* basis, *** **********. **** machines *** ** ****** running ******** ******** ** Windows.
  • ******* ********: [******]** *** ********* **** a **** ************** *** ***** ** how ** ******* ** on *** * ********* Series *********.***** **** ******* **** specifically ********* **** ** support ** ***** ** the *******, *** ******* has *** ********* ** IPVM. ** **** ****** when **** **.
  • *****:** ***** ** **** discussion, ***** *** ****** a ****** ** *** top ** ***** **** and ************** ****** ************.
  • *********: ** ********* *********, who **** ** **** have *** **** ******** of *** ******** ******* in *** **. ********* HQ ******* *** *** yet *********.
  • *******: *** ******* ****** official ****** *** ***** support ****** *** ******** dealers ** **** *** automatic ******* '***** ******* notice'.
  • ***: *** ****** ****** reported *** ***** ** a **** ****** ***** warning **** *****,****** **! *********.*** ******* 5 *** **** ****** ********.

*******, ***** ***** *** NVRs ***** ** ********, as ****. ** **** update **** **** ** other ******** ******* *** known.

Not ***** *** *********, *****, *** ***** ***** ****/*******

*************, *** ***** ** this ***** **** ******* older ******* ** ******** and ****.

********** ******** ******* ********* from ***** *** *********, who ******* ******* ***** an ******** ******* ** Linux.

Fix: ******* *** * ** ******** ********

** **** *****, ******** vendors *** ************ ******* repair *** ***** ** reimaging *** *** * OS ** * ******** version.

*** ****** ******* ****** based ** *** ****** build/motherboard ****, *** *** process ********* ******** ******* to ******** * '******** version' *** **** ** a *** *****, **** travelling ** **** ******** NVR ** *** ***** and ******** *** ***.

Security ****** ********

******* ******** ******* **** released ******** ******* *** warnings ***** *** *****.

*** *******, ***** *** placed ******** ****** ** *** top ** ***** ****:

******* **** ****** ******** notice *** ***** ******* portal:

** ******** ** *** official ******, ******* **** clarified ** ****:

"** ***** ** ********** for **, **** ** affecting **-*** **/**/** ****. SV-PRO **/** *** ********** EOL, *** ** *** some ***** **** **** and ****** *** ******** regardless."

[******] ******* ******** ************ **** * **** instruction*** *** ***** ** how ** ******* ** on *** * ********* Series *********.

Undiscovered ********

**********, **** ******** ******* may **** ********** ******. Since **** ************ ******* (especially ******* ******* ***** impacted **** *** ********) are *** ******** *********, many ******* *** *** viewed ***** ******** ******* is ******.

***** ******** ****** ******* out, **** ** ****** to ****** ** ************ issues:

* ***** ** ******* to *** **** **** systems *** ***** **** be **** *** ****, weeks *** ***** **** months ****** ****** *******. Many ***** ******** *** homeowners **** ***** ***** cameras **** *****'* * problem. **** ******* ** there's * *********** ***** and **** **** *** the ****** *** **** down *** **** ** months?

Corrective ******: "**** *** ********* *******"

** ******* ****** ********, vendors *** ******* ********** to ******* ****** ********* Win * *******.

*******, **** ********** **** leaves *** ******* ********** to ******* * ******** threats *** ****** **** unpatched ******* ***** *****.

Win * ***-**-*****, ******* ****** **** ****

*** ******* ** *********** by *** ******** *** of ******* ********** * ** ******* 2020.

**** ** ******* ******* date ** ****, ******* will *** ******* ******* security ******* ***** ******* 13th, **** *** '******* Embedded ******** *'. *** company ****** ** ************ * ********* *****:

********* **** * ********** to ******* ** ***** of ******* ******* *** Windows * **** ** was ******** ** ******* 22, ****. **** **** 10-year ****** ****, ********* will *********** ******* * support ** **** ** can ***** *** ********** on ********** ***** ************ and ***** *** ***********.

** **** **** **** looming, ******** **** *** servers ******* *** ******** OS **** ********** **** to ******* ********* *******, or ** ********, ****** the **** **** **** risking *********** *********.

Impact ** *******

************* *** ******** *******, recourse ******* *******.

**** ****** ******** ******* from '** ********' ******** ******* ****** ************, ******* *** ********* placing ************** ** *** the ******* ** **********.

******* ******* ** **** spoken **** **** *** they *** '******* ****** on *** *** ****' and **** '** *** eating ***** ** **** manhours' ********* ******* ******.

*** ******** ****** ********* a*********** ****** ** ***** repairing ******** ********:

* **** ***** **** of *** ******* ********* affected ****. *** ******* based ** ****** ****** were *** ******* ** repair. * ****** ******* typed ** ****** ****** you ** * ****** to **** **** *** updates. *** ******* * embedded ***** *****'* ** easy. **** ********* *** to ** ******** ** out ** *** *** condition ****** **** ***** operate. **** ***** *********** all **** ******* (***** the **** **** ******* the *******) *** ********* them ** ***** ******.

***** *** ********* *** date *** ******** ** machines, ** ** *** expect ******* ** ****** significant ********** ********* ** the *****.

A *** *** *****?

****** ***** ******* *** going ** ***** **** is * **** ************* for ***** **** *** not ****** ** ***** about **** **** ** crisis.

*******, *** **** ****** who **** ******* * for ** **** *** also ****** *** ***** to ** ***** ** pay ******* **** *** upgrade ***** ** **** may ********* ** ******* systems.

******* **** ******* ******* tout ***** * *********** recording ****** ** *** is '* ****** ***** ** failure', *** ** ****** issues **** **** ******** similar *********.

Comments (7)

**** **** ******** ** me (*** *** ****** time ** *** **** year) ******* **** ****** Station ** * ******* 7 ******* (**** ***** NVR). * ** *** run ********* ******* *** do ******** ******* ******* from **** ** ****. Unfortunately, *** **** *** is ****** **-******* *** machine **** ***** **** Axis **** *******.

** **** ** ******** Win7 ***** ** **** Win7?

************** ****** ******* **** versions.

**** ****, ** ********* is *** ******** ******* that ** **** *** affected.

[******]DW ********

******* ******** ************ **** * **** instruction*** *** ***** ** how ** ******* ** on *** * ********* Series *********.

**** ***** *******, ** also ********* ******* *** automatic ******* ** ******* similar ******:

** *** ********* ***, Windows ******* **** *** configure ** ******** *** install ************* **** *** factory *** ** *** unforeseen *** ********** ****** the ******* ******* *** cause ** *** *********** of *** ****** *** DW ********.

** *** **** ****** last **** *** ******* Radius (*** ****, ***** uses *****) *** ***** Digital ****** (****** ******).

******: ******** *** ********* that **** **** *** some ****** ** *** field **** ***** *******, but ** * ******* basis, *** **********. **** machines *** ** ****** running ******** ******** ** Windows.

***** **** ** *** conspiracy ******** ** ** or *’** ****** *** cynical *** * ***** Microsoft *** **** ** purpose ** ***** **** to ******* ** ******* 10 ** ****** ****. If ** *** **** this ***** ** ***** NOT **-******* ******* *; we ***** ******* ******* 10 ** ****** ****.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports

No Genetec Major Releases In Over A Year on Feb 06, 2019
Annual VMS licenses are a controversial practice in the video surveillance industry, with many questioning their need or value. However, enterprise...
HTTPS / SSL Video Surveillance Usage Statistics on Apr 01, 2019
HTTPS / SSL / TLS usage has become commonplace for websites to improve security and, in particular, to help mitigate attackers reading or modifying...
Verint Victimized By Ransomware on Apr 18, 2019
Verint, which is best known in the physical security industry for video surveillance but has built a sizeable cybersecurity business as well, was...
Security Fail: ASISNYC Auto Emails Passwords In Plain Text on May 14, 2019
ASIS NYC automatically emails a user with the password the user just entered, in plain text, when one registers for the site / event, as the...
LifeSafety Power NetLink Vulnerabilities And Problematic Response on May 20, 2019
'Power supplies' are not devices that many think about when considering vulnerabilities but as more and more devices go 'online', the risks for...
Razberi Technologies Company Profile on Aug 06, 2019
Razberi says they have doubled their revenue in the first half of 2019, citing their proprietary camera hardening and cybersecurity capabilities...
Dahua Wiretapping Vulnerability on Aug 02, 2019
IPVM has validated, with testing, and from Dahua, that many Dahua cameras have a wiretapping vulnerability. Even if the camera's audio has been...
Axis Suffers Outage, Provides Postmortem on Aug 15, 2019
This week, Axis suffered an outage impacting their website and cloud services. Inside this note, we examined what happened, what was impacted...
3 Weeks Later, Honeywell Still Cannot Say Whether They Are Vulnerable To Dahua Wiretapping [Now Admits] on Aug 27, 2019
The Dahua wiretapping vulnerability and Dahua's decision to delay disclosing it until IPVM inquired underscored problems with cybersecurity and...
Remote Access (DDNS vs P2P vs VPN) Usage Statistics on Oct 25, 2019
Remote access can make systems more usable but also more vulnerable. How are integrators delivring remote access in 2019? How many are using...

Most Recent Industry Reports

Milestone Launches Multiple Cloud Solutions on Feb 18, 2020
Milestone is going to the cloud, becoming one of the last prominent VMSes to do so. Milestone is clearly late but how competitive do these new...
Video Surveillance 101 Course - Last Chance Thursday on Feb 18, 2020
IPVM's first Video Surveillance 101 course starts this month, designed to help those new to the industry to quickly understand the most important...
Video Surveillance Architecture 101 on Feb 18, 2020
Video surveillance can be designed and deployed in a number of ways. This 101 examines the most common options and architectures used in...
UK Stands Behind Hikvision But Controversy Continues on Feb 18, 2020
Hikvision is exhibiting at a UK government conference for law enforcement, provoking controversy from the press, politicians, and activists due to...
IronYun AI Analytics Tested on Feb 17, 2020
Taiwan startup IronYun has raised tens of millions for its "mission to be the leading Artificial Intelligence, big data video software as a service...
Access Control ADA and Disability Laws Tutorial on Feb 17, 2020
Safe access control is paramount, especially for those with disabilities. Most countries have codes to mandate safe building access for those...
ISC West 2020 Removes China Pavilion, No Plans To Cancel Or Postpone on Feb 17, 2020
ISC West plans to go on next month, amidst concerns over coronavirus. However, the Asia / China Pavilion has been removed, show organizers...
Hanwha Wisenet X Plus PTRZ Tested on Feb 14, 2020
Hanwha has released their PTRZ camera, the Wisenet X Plus XNV-6081Z, claiming the "modular design allows for easy installation". We bought and...
PRC Warns Against China Video Surveillance Hacks, Hikvision Targeted on Feb 14, 2020
Hackers are targeting China video surveillance manufacturers and systems, according to the PRC's main cyber threat monitoring body. The hackers...
IPVM Conference 2020 on Feb 13, 2020
IPVM is excited to announce our 2020 conference. This is the first and only industry event that will be 100% sponsor-free. Like IPVM online, the...