{"id":55944,"date":"2018-06-23T12:49:49","date_gmt":"2018-06-23T04:49:49","guid":{"rendered":"https:\/\/blog.trendmicro.com.tw\/?p=55944"},"modified":"2018-06-28T12:53:32","modified_gmt":"2018-06-28T04:53:32","slug":"%e8%ab%8b%e7%ab%8b%e5%8d%b3%e4%bf%ae%e8%a3%9c%ef%bc%9aaxis-%e7%b6%b2%e8%b7%af%e6%94%9d%e5%bd%b1%e6%a9%9f%e6%bc%8f%e6%b4%9e%e5%8f%af%e8%83%bd%e5%b0%8e%e8%87%b4%e8%a3%9d%e7%bd%ae%e9%81%ad%e9%a7%ad","status":"publish","type":"post","link":"https:\/\/blog.trendmicro.com.tw\/?p=55944","title":{"rendered":"\u8acb\u7acb\u5373\u4fee\u88dc\uff1aAxis \u7db2\u8def\u651d\u5f71\u6a5f\u6f0f\u6d1e\u53ef\u80fd\u5c0e\u81f4\u88dd\u7f6e\u906d\u99ed\u5ba2\u64cd\u63a7"},"content":{"rendered":"<p>\u7814\u7a76\u4eba\u54e1\u5728\u5e02\u552e\u7684 390 \u6b3e Axis IP \u7db2\u8def\u651d\u5f71\u6a5f\u7684\u97cc\u9ad4\u7576\u4e2d<a href=\"https:\/\/www.theregister.co.uk\/2018\/06\/18\/surveillance_cameras_insecure\/\">\u767c\u73fe<\/a>\u4e86 7 \u500b\u6f0f\u6d1e\uff0c\u9019\u4e9b\u6f0f\u6d1e\u53ef\u80fd\u8b93\u99ed\u5ba2\u638c\u63a7\u88dd\u7f6e\u7684\u62cd\u651d\u756b\u9762\u53ca\u8edf\u9ad4\u3001\u8b93\u88dd\u7f6e\u5b8c\u5168\u5931\u6548\u3001\u900f\u904e\u88dd\u7f6e\u4f86\u5165\u4fb5\u7db2\u8def\uff0c\u6216\u8005\u5229\u7528\u88dd\u7f6e\u4f86\u767c\u52d5<a href=\"https:\/\/blog.trendmicro.com.tw\/?p=16497\">\u5206\u6563\u5f0f\u963b\u65b7\u670d\u52d9\u653b\u64ca (DDoS)<\/a>\u4e4b\u985e\u7684\u7db2\u8def\u653b\u64ca\u3002\u8a72\u88dd\u7f6e\u88fd\u9020\u5546\u5728\u63a5\u7372\u901a\u5831\u4e4b\u5f8c\u5df2\u8fc5\u901f\u91cb\u51fa\u4fee\u88dc\u66f4\u65b0\uff0c\u6240\u6709<a href=\"https:\/\/www.axis.com\/files\/sales\/ACV-128401_Affected_Product_List.pdf\">\u53d7\u5f71\u97ff\u7684\u578b\u865f<\/a>\u7686\u61c9\u76e1\u901f\u66f4\u65b0\u88dd\u7f6e\u97cc\u9ad4\u3002<\/p>\n<p><a href=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2018\/06\/ip-camera.jpg\"><img loading=\"lazy\" decoding=\"async\" class=\"aligncenter wp-image-55945 size-full\" src=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2018\/06\/ip-camera.jpg\" alt=\"\u8acb\u7acb\u5373\u4fee\u88dc\uff1aAxis \u7db2\u8def\u651d\u5f71\u6a5f\u6f0f\u6d1e\u53ef\u80fd\u5c0e\u81f4\u88dd\u7f6e\u906d\u99ed\u5ba2\u64cd\u63a7\" width=\"773\" height=\"408\" srcset=\"https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2018\/06\/ip-camera.jpg 773w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2018\/06\/ip-camera-300x158.jpg 300w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2018\/06\/ip-camera-768x405.jpg 768w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2018\/06\/ip-camera-600x317.jpg 600w, https:\/\/blog.trendmicro.com.tw\/wp-content\/uploads\/2018\/06\/ip-camera-30x16.jpg 30w\" sizes=\"(max-width: 773px) 100vw, 773px\" \/><\/a><\/p>\n<p><strong>[\u5ef6\u4f38\u95b1\u8b80\uff1a<\/strong><a href=\"https:\/\/blog.trendmicro.com.tw\/?p=54949\"><strong>2017 \u5e74\u6700\u503c\u5f97\u6ce8\u610f\u7684\u5bb6\u5ead\u7db2\u8def\u5a01\u8105<\/strong><\/a><strong>]<\/strong><\/p>\n<p>\u7814\u7a76\u4eba\u54e1\u5df2\u5c07\u4e0a\u8ff0\u6f0f\u6d1e\u901a\u5831\u7d66 Axis Communications \u516c\u53f8\uff0c\u9019\u4e9b\u6f0f\u6d1e\u662f\u7814\u7a76\u4eba\u54e1\u5728\u8ffd\u67e5\u67d0\u4e9b\u6d88\u8cbb\u578b\u53ca\u5546\u7528<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/threat-intelligence-center\/internet-of-things\/\">\u7269\u806f\u7db2 (IoT)<\/a> \u88dd\u7f6e\u6f0f\u6d1e\u6642\u6240\u767c\u73fe\uff0c\u5176\u4e2d\u9084\u5305\u62ec\u4e86\u96f6\u6642\u5dee\u6f0f\u6d1e\u3002\u99ed\u5ba2\u53ef\u642d\u914d\u904b\u7528\u5176\u4e2d\u7684 3 \u500b\u6f0f\u6d1e\u4f86\u53d6\u5f97\u88dd\u7f6e\u7684\u7cfb\u7d71\u7ba1\u7406\u6b0a\u9650\u9032\u800c\u5f9e\u9060\u7aef\u4e0b\u9054\u6307\u4ee4\u4f86\u9032\u884c\u4e0b\u5217\u64cd\u4f5c (\u7814\u7a76\u4eba\u54e1\u751a\u81f3\u63d0\u4f9b\u4e86<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/definition\/proof-of-concept-threat\">\u6982\u5ff5\u9a57\u8b49\u793a\u7bc4<\/a>)\uff1a<\/p>\n<ul>\n<li>\u53d6\u5f97\u5373\u6642\u62cd\u651d\u756b\u9762\u3002<\/li>\n<li>\u51cd\u7d50\u62cd\u651d\u756b\u9762\u3002<\/li>\n<\/ul>\n<ul>\n<li>\u64cd\u63a7\u62cd\u651d\u65b9\u5411\u4e26\u555f\u7528\u6216\u505c\u7528\u7269\u9ad4\u79fb\u52d5\u611f\u61c9\u529f\u80fd\u3002<\/li>\n<\/ul>\n<ul>\n<li>\u5c07\u88dd\u7f6e\u6536\u7de8\u81f3\u6bad\u5c4d\u7db2\u8def\u3002<\/li>\n<li>\u7be1\u6539\u8edf\u9ad4\u3002<\/li>\n<li>\u5f9e\u88dd\u7f6e\u5165\u4fb5\u5176\u6240\u5728\u7684\u7db2\u8def\u3002<\/li>\n<li>\u8b93\u88dd\u7f6e\u5931\u6548\u3002<\/li>\n<li>\u5229\u7528\u88dd\u7f6e\u4f86\u5f9e\u4e8b\u5176\u4ed6\u60e1\u610f\u6d3b\u52d5\uff0c\u4f8b\u5982\uff1a\u865b\u64ec\u52a0\u5bc6\u8ca8\u5e63\u6316\u7926\u6216 DDoS \u653b\u64ca\u3002<\/li>\n<\/ul>\n<p><!--more--><\/p>\n<p><strong>[\u5ef6\u4f38\u95b1\u8b80\uff1a<\/strong><a href=\"https:\/\/blog.trendmicro.com\/tech-support-for-the-internet-of-things\/\"><strong>\u7269\u806f\u7db2\u76f8\u95dc\u7684\u6280\u8853\u652f\u63f4<\/strong><\/a><strong>]<\/strong><\/p>\n<p>\u7814\u7a76\u4eba\u54e1\u9032\u4e00\u6b65\u6307\u51fa\uff0c\u76ee\u524d\u96d6\u7136<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/definition\/in-the-wild\">\u7db2\u8def\u4e0a<\/a>\u5c1a\u672a\u51fa\u73fe\u91dd\u5c0d\u9019\u4e9b\u6f0f\u6d1e\u7684\u653b\u64ca\uff0c\u4f46\u6240\u6709\u4f7f\u7528\u8a72\u516c\u53f8\u7522\u54c1\u7684\u5ba2\u6236\u7686\u61c9\u76e1\u901f\u66f4\u65b0\u5176\u7522\u54c1\u97cc\u9ad4\u4ee5\u78ba\u4fdd\u5b89\u5168\u3002Axis \u7684\u7522\u54c1\u884c\u92b7\u5168\u7403 150 \u591a\u570b\uff0c\u4e0d\u8ad6\u516c\u5bb6\u6a5f\u95dc\u6216\u79c1\u4eba\u6a5f\u69cb\u5982\uff1a\u8ced\u5834\u3001\u9280\u884c\u3001\u76e3\u7344\u6216\u4ea4\u901a\u904b\u8f38\u7cfb\u7d71\u7686\u53ef\u767c\u73fe\u8a72\u5176 IP \u651d\u5f71\u6a5f\u7684\u8e64\u5f71\u3002<\/p>\n<p>\u800c\u9019\u9805\u6d88\u606f\u4e5f\u8b93 <a href=\"https:\/\/blog.trendmicro.com\/iot-device-security-home\/\">IoT \u7684\u5b89\u5168\u7591\u616e<\/a>\u518d\u5ea6\u5347\u9ad8\u3002\u4ee5\u4e0b\u662f\u4e00\u4e9b\u53ef\u964d\u4f4e\u9019\u985e\u98a8\u96aa\u65b9\u6cd5\uff1a<\/p>\n<ul>\n<li>\u5b9a\u671f\u4e0b\u8f09\u5b98\u65b9\u4f86\u6e90\u6216\u88dd\u7f6e\u88fd\u9020\u5546\u6240\u63d0\u4f9b\u7684\u4fee\u88dc\u66f4\u65b0\u3002<\/li>\n<li>\u66f4\u63db\u51fa\u5ee0\u9810\u8a2d\u7684\u5bc6\u78bc\uff0c\u6539\u7528\u9ad8\u5f37\u5ea6\u5bc6\u78bc\u4e26\u4e0d\u5b9a\u671f\u66f4\u63db\u4ee5\u964d\u4f4e\u88dd\u7f6e\u906d\u5916\u754c\u4e0d\u7576\u5b58\u53d6\u7684\u53ef\u80fd\u6027\u3002<\/li>\n<li>\u719f\u6089 IoT \u88dd\u7f6e\u7684\u529f\u80fd\uff0c\u4e26\u4e14\u9078\u64c7\u503c\u5f97\u4fe1\u8cf4\u7684\u5ee0\u5546\u6240\u751f\u7522\u4e14\u5728\u5b89\u5168\u65b9\u9762\u4eab\u6709\u4fe1\u8b7d\u7684\u88dd\u7f6e\u3002<\/li>\n<\/ul>\n<p><strong>[\u5ef6\u4f38\u95b1\u8b80\uff1a<\/strong><a href=\"https:\/\/www.trendmicro.com\/us\/iot-security\/content\/main\/document\/IoT%20Security%20for%20Surveillance%20Cameras%20Whitepaper.pdf\"><strong>\u5982\u4f55\u78ba\u4fdd IP \u651d\u5f71\u6a5f\u5b89\u5168<\/strong><\/a><strong>]<\/strong><\/p>\n<p>\u8da8\u52e2\u79d1\u6280 <a href=\"https:\/\/www.trendmicro.com\/en_us\/forHome.html\">Smart Home Network<\/a>&#x2122; \u667a\u6167\u5bb6\u5ead\u7db2\u8def\u7522\u54c1\u7684\u5ba2\u6236\u53ef\u5229\u7528\u4ee5\u4e0b\u898f\u5247\u4f86\u9632\u7bc4\u9019\u9805\u5a01\u8105\uff1a<\/p>\n<p>1134791 WEB Axis Cameras Authorization Bypass Vulnerability (CVE-2018-10661)<br \/>\n1134792 WEB Axis Cameras \/bin\/ssid Process Crash (CVE-2018-10659)<br \/>\n1134793 WEB Axis Cameras Dbus Unrestricted Access (CVE-2018-10662)<br \/>\n1134794 WEB Axis Cameras Shell Command Injection (CVE-2018-10660)<br \/>\n1134795 WEB Axis Cameras \/bin\/ssid Process Information Disclosure (CVE-2018-10663)<br \/>\n1134796 WEB Axis Cameras Dbus \/bin\/ssid Process Crash (CVE-2018-10658)<\/p>\n<p>&nbsp;<\/p>\n<p>\u539f\u6587\u51fa\u8655\uff1a<a href=\"https:\/\/www.trendmicro.com\/vinfo\/us\/security\/news\/vulnerabilities-and-exploits\/patch-now-axis-cameras-flaws-could-give-attackers-control\">Patch Now: Axis Cameras\u2019 Flaws Could Give Attackers Control<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u7814\u7a76\u4eba\u54e1\u5728\u5e02\u552e\u7684 390 \u6b3e Axis IP \u7db2\u8def\u651d\u5f71\u6a5f\u7684\u97cc\u9ad4\u7576\u4e2d\u767c\u73fe\u4e86 7 \u500b\u6f0f\u6d1e\uff0c\u9019\u4e9b\u6f0f\u6d1e\u53ef\u80fd\u8b93\u99ed\u5ba2\u638c\u63a7\u88dd [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":"","_wpscppro_dont_share_socialmedia":false,"_wpscppro_custom_social_share_image":0,"_facebook_share_type":"","_twitter_share_type":"","_linkedin_share_type":"","_pinterest_share_type":"","_linkedin_share_type_page":"","_instagram_share_type":"","_medium_share_type":"","_threads_share_type":"","_google_business_share_type":"","_selected_social_profile":[],"_wpsp_enable_custom_social_template":false,"_wpsp_social_scheduling":{"enabled":false,"datetime":null,"platforms":[],"status":"template_only","dateOption":"today","timeOption":"now","customDays":"","customHours":"","customDate":"","customTime":"","schedulingType":"absolute"},"_wpsp_active_default_template":true},"categories":[1723,1335,3841],"tags":[1599,1593,3248],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/55944"}],"collection":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=55944"}],"version-history":[{"count":0,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=\/wp\/v2\/posts\/55944\/revisions"}],"wp:attachment":[{"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=55944"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=55944"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/blog.trendmicro.com.tw\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=55944"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}