{"id":9197,"date":"2018-01-19T19:14:46","date_gmt":"2018-01-19T11:14:46","guid":{"rendered":"https:\/\/www.kaspersky.com.cn\/blog\/?p=9197"},"modified":"2020-09-15T00:47:14","modified_gmt":"2020-09-14T16:47:14","slug":"router-vulnerability-34c3","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.cn\/blog\/router-vulnerability-34c3\/9197\/","title":{"rendered":"\u68c0\u6d4b\u4e0d\u5230\u6f0f\u6d1e\u5e76\u4e0d\u610f\u5473\u7740\u6ca1\u6709\u6f0f\u6d1e"},"content":{"rendered":"<p>\u65b0\u95fb\u5a92\u4f53\u4e0a\u51e0\u4e4e\u5929\u5929\u90fd\u6709\u5173\u4e8e\u6f0f\u6d1e\u7684\u65b0\u95fb\u7206\u51fa\u3002\u4e00\u822c\u60c5\u51b5\u4e0b\uff0c\u6f0f\u6d1e\u4f1a\u5728\u4e92\u8054\u7f51\u4e0a\u5f15\u8d77\u70ed\u8bae\uff0c\u5728\u5f00\u53d1\u8005\u53d1\u5e03\u76f8\u5173\u8865\u4e01\u540e\uff0c\u4e00\u5207\u6e10\u6e10\u5e73\u606f\u3002\u770b\u8d77\u6765\u4f3c\u4e4e\u4e07\u4e8b\u5927\u5409\uff0c\u95ee\u9898\u4e5f\u5f97\u5230\u4e86\u89e3\u51b3\uff0c\u4f46\u4e8b\u5b9e\u5374\u5e76\u975e\u5982\u6b64\u3002\u4e0d\u662f\u6240\u6709\u7ba1\u7406\u5458\u90fd\u4f1a\u5b89\u88c5\u66f4\u65b0\uff0c\u5c24\u5176\u662f\u6d89\u53ca\u5230\u7f51\u7edc\u8bbe\u5907\u8f6f\u4ef6\u7684\u66f4\u65b0\u3002\u66f4\u65b0\u901a\u5e38\u9700\u8981\u7684\u5de5\u4f5c\u91cf\u5f88\u5927\u3002<\/p>\n<p><a href=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/97\/2018\/01\/23190425\/router-vulnerability-34c3.jpg\"><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/media.kasperskydaily.com\/wp-content\/uploads\/sites\/97\/2018\/01\/23190425\/router-vulnerability-34c3.jpg\" alt=\"\" width=\"1460\" height=\"958\" class=\"alignright size-full wp-image-9198\"><\/a><\/p>\n<p>\u6709\u4e9b\u7cfb\u7edf\u7ba1\u7406\u5458\u8ba4\u4e3a\u81ea\u5df1\u7684\u4f01\u4e1a\u4e0d\u4f1a\u6210\u4e3a\u9ed1\u5ba2\u7684\u76ee\u6807\u3002\u6709\u4e9b\u7ba1\u7406\u5458\u5219\u4f1a\u626b\u89c6\u5b98\u65b9\u5b89\u5168\u5efa\u8bae\u4e2d\u662f\u5426\u6709\u201d\u6ca1\u6709\u6f0f\u6d1e\u5b58\u5728\u7684\u8ff9\u8c61\u201d\u8fd9\u6837\u7684\u8bed\u53e5\uff0c\u82e5\u662f\u6ca1\u6709\uff0c\u5c31\u653e\u5fc3\u4e0d\u7ba1\uff0c\u8ba4\u4e3a\u8fd9\u53ea\u662f\u7406\u8bba\u4e0a\u7684\u6f0f\u6d1e\u3002<\/p>\n<p>\u53bb\u5e74\uff0c\u601d\u79d1\u8bbe\u5907\u62a5\u544a\u4e86\u51e0\u4e2a\u4e25\u91cd\u6f0f\u6d1e\u3002\u5176\u4e2d\u4e00\u4e2a\u662fCisco IOS\u548cIOS XE\u64cd\u4f5c\u7cfb\u7edf\u4e2d\u7684SNMP\u8fdc\u7a0b\u4ee3\u7801\u6267\u884c\u6f0f\u6d1e\uff08\u54a8\u8be2ID\uff1acisco-sa-20170629-snmp\uff09\uff0c\u8fd9\u4e2a\u6f0f\u6d1e\u8bf4\u660e\u4e86\u5916\u90e8\u4eba\u5458\u53ef\u80fd\u5982\u4f55\u83b7\u5f97\u5bf9\u7cfb\u7edf\u7684\u5b8c\u5168\u63a7\u5236\u6743\u3002\u4ed6\u4eec\u552f\u4e00\u9700\u8981\u7684\u662f\u76f8\u5173\u7cfb\u7edf\u7684SNMP\u53ea\u8bfb\u793e\u533a\u5b57\u7b26\u4e32\uff08\u4e00\u79cd\u7528\u6237ID\u6216\u5bc6\u7801\uff09\u3002\u81ea2017\u5e747\u6708\u4ee5\u6765\uff0c\u8fd9\u4e2a\u95ee\u9898\u5df2\u7ecf\u5e7f\u4e3a\u4eba\u77e5\u3002\u601d\u79d1\u4e5f\u4e25\u8083\u5bf9\u5f85\u8fd9\u4e9b\u6f0f\u6d1e\uff0c\u5e76\u8fc5\u901f\u8fdb\u884c\u4e86\u4fee\u8865\uff0c\u56e0\u6b64\u6ca1\u6709\u68c0\u6d4b\u5230\u4efb\u4f55\u5229\u7528\u8fd9\u4e9b\u6f0f\u6d1e\u7684\u4f01\u56fe\u3002<\/p>\n<p>\u6211\u4eec\u7684\u540c\u4e8bArtem Kondratenko\u662f\u4e00\u540d\u6e17\u900f\u6d4b\u8bd5\u4e13\u5bb6\u3002\u5728\u4ed6\u6267\u884c\u7684\u4e00\u6b21\u5916\u90e8\u6e17\u900f\u6d4b\u8bd5\u4e2d\uff0c\u53d1\u73b0\u4e86\u4e00\u4e2a\u5e26\u6709\u9ed8\u8ba4SNMP\u793e\u533a\u5b57\u7b26\u4e32\u7684Cisco\u8def\u7531\u5668\u3002\u4ed6\u51b3\u5b9a\u7814\u7a76\u4e0b\u8fd9\u4e2a\u6f0f\u6d1e\u5230\u5e95\u6709\u591a\u5371\u9669\u3002\u4e3a\u6b64\uff0c\u4ed6\u8bbe\u5b9a\u4e86\u4e00\u4e2a\u76ee\u6807\uff1a\u901a\u8fc7\u8be5\u8def\u7531\u5668\u8bbf\u95ee\u5185\u90e8\u7f51\u7edc\u3002\u987a\u4fbf\u8bf4\u4e00\u53e5\uff0cKondratenko\u7684\u53d1\u73b0\u5e76\u4e0d\u662f\u72ec\u4e00\u65e0\u4e8c\u7684\u3002Shodan\u5217\u51fa\u4e86\u4f7f\u7528\u9ed8\u8ba4\u793e\u533a\u5b57\u7b26\u4e32\u76843,313\u90e8\u76f8\u540c\u578b\u53f7\u8bbe\u5907\u3002<\/p>\n<p>\u4e0d\u8fc7\uff0c\u6211\u4eec\u6682\u4e14\u4e0d\u8c08\u6280\u672f\u7ec6\u8282\u3002\u5982\u679c\u4f60\u60f3\u66f4\u597d\u5730\u4e86\u89e3\u4ed6\u5f00\u5c55\u7684\u7814\u7a76\uff0c\u8bf7\u89c2\u770bKondratenko\u5728<a href=\"https:\/\/media.ccc.de\/v\/34c3-8936-1-day_exploit_development_for_cisco_ios\" target=\"_blank\" rel=\"nofollow noopener noreferrer\">\u6df7\u6c8c\u901a\u8baf\u5927\u4f1a<\/a>\u4e0a\u53d1\u8868\u7684\u6f14\u8bb2\u3002\u91cd\u8981\u7684\u662f\u4ed6\u6240\u5f97\u51fa\u7684\u6700\u7ec8\u7ed3\u679c\u3002\u4ed6\u8bc1\u660e\u4e86\u53ef\u4ee5\u5229\u7528\u8fd9\u4e2a\u6f0f\u6d1e\u4ee5\u7b2c15\u7ea7\u6743\u9650\u6765\u8bbf\u95ee\u7cfb\u7edf\uff0c\u8fd9\u662f\u601d\u79d1IOS shell\u7684\u6700\u9ad8\u8bbf\u95ee\u6743\u9650\u3002\u6240\u4ee5\uff0c\u56e0\u4e3a\u6ca1\u6709\u68c0\u6d4b\u5230\u6b64\u6f0f\u6d1e\uff0c\u800c\u5c31\u6b64\u5ffd\u7565\u8be5\u6f0f\u6d1e\u53ef\u5c31\u5927\u9519\u7279\u9519\u4e86\u3002Kondratenko\u4ece\u53d1\u73b0\u6709\u6f0f\u6d1e\u7684\u8bbe\u5907\u5230\u521b\u5efa\u5229\u7528cisco-sa-20170629-snmp\u7684\u6982\u5ff5\u8bc1\u660e\u4ec5\u7528\u4e86\u56db\u5468\u65f6\u95f4\u3002<\/p>\n<p>\u4e3a\u4e86\u786e\u4fdd\u60a8\u7684\u8def\u7531\u5668\u4e0d\u4f1a\u6210\u4e3a\u6b64\u6f0f\u6d1e\u7684\u7b2c\u4e00\u4e2a\u53d7\u5bb3\u8005\uff0c\u660e\u667a\u7684\u505a\u6cd5\u662f\uff1a<\/p>\n<p>1.\u786e\u4fdd\u60a8\u7684\u7f51\u7edc\u8bbe\u5907\u8f6f\u4ef6\u662f\u6700\u65b0\u7684\uff1b<\/p>\n<p>2.\u4e0d\u8981\u5728\u8fde\u63a5\u5230\u5916\u90e8\u7f51\u7edc\u7684\u8def\u7531\u5668\u4e0a\u4f7f\u7528\u9ed8\u8ba4\u793e\u533a\u5b57\u7b26\u4e32\uff08\u6700\u597d\u907f\u514d\u4f7f\u7528\u9ed8\u8ba4\u793e\u533a\u5b57\u7b26\u4e32\uff09\uff1b<\/p>\n<p>3.\u5bc6\u5207\u5173\u6ce8\u7f51\u7edc\u8bbe\u5907\u7684\u4f7f\u7528\u5bff\u547d\u58f0\u660e \u2013 \u5bff\u547d\u5230\u671f\u540e\uff0c\u5236\u9020\u5546\u4e0d\u4f1a\u518d\u63d0\u4f9b\u652f\u6301\uff0c\u56e0\u6b64\u4e0d\u53ef\u80fd\u6536\u5230\u4efb\u4f55\u66f4\u65b0\u3002<\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u4e0d\u662f\u6240\u6709\u7ba1\u7406\u5458\u90fd\u4f1a\u5b89\u88c5\u66f4\u65b0\uff0c\u5c24\u5176\u662f\u6d89\u53ca\u5230\u7f51\u7edc\u8bbe\u5907\u8f6f\u4ef6\u7684\u66f4\u65b0\u3002\u66f4\u65b0\u901a\u5e38\u9700\u8981\u7684\u5de5\u4f5c\u91cf\u5f88\u5927\u3002<\/p>\n","protected":false},"author":700,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1745,1413],"tags":[1587,1586,1605,44],"class_list":{"0":"post-9197","1":"post","2":"type-post","3":"status-publish","4":"format-standard","6":"category-smb","7":"category-business","8":"tag-34c3","9":"tag-ccc","10":"tag-1605","11":"tag-44"},"hreflang":[{"hreflang":"zh","url":"https:\/\/www.kaspersky.com.cn\/blog\/router-vulnerability-34c3\/9197\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/router-vulnerability-34c3\/12248\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/router-vulnerability-34c3\/10169\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/router-vulnerability-34c3\/14439\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/router-vulnerability-34c3\/12667\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/router-vulnerability-34c3\/12340\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/router-vulnerability-34c3\/15149\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/router-vulnerability-34c3\/14932\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/router-vulnerability-34c3\/19491\/"},{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/router-vulnerability-34c3\/4640\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/router-vulnerability-34c3\/20747\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/router-vulnerability-34c3\/9946\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/router-vulnerability-34c3\/10031\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/router-vulnerability-34c3\/8801\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/router-vulnerability-34c3\/19288\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/router-vulnerability-34c3\/19398\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/router-vulnerability-34c3\/19362\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.cn\/blog\/tag\/34c3\/","name":"34c3"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/posts\/9197","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/users\/700"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/comments?post=9197"}],"version-history":[{"count":4,"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/posts\/9197\/revisions"}],"predecessor-version":[{"id":11953,"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/posts\/9197\/revisions\/11953"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/media?parent=9197"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/categories?post=9197"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.cn\/blog\/wp-json\/wp\/v2\/tags?post=9197"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}