关键漏洞信息 Title: FLIR Systems FLIR Thermal Traffic Cameras RTSP Stream Disclosure Advisory ID: ZSL-2018-5489 Type: Local/Remote Impact: Exposure of System Information, Exposure of Sensitive Information Risk: 3/5 Release Date: 06.10.2018 Description: FLIR thermal traffic cameras suffer from an unauthenticated and unauthorized live RTSP video stream access. Vendor: FLIR Systems, Inc. - Affected Version: V1.01-0bb5b27 - (TrafiOne) E1.00.09 - (TI BPL2 EDGE) V1.02.P01 - (TI x-stream) V1.05.P01 - (ThermiCam) V1.04.P02 - (ThermiCam) V1.04 - (ThermiCam) V1.01.P02 - (ThermiCam) V1.05.P03 - (TrafiSense) V1.06 - (VIP-IP) V1.02.P02 - (TrafiRadar) Tested On: nginx/1.12.1 nginx/1.10.2 nginx/1.8.0 WebSocket/13 (RFC 6455) Vendor Status: [26.07.2018] Vulnerability discovered. [17.08.2018] Vendor contacted. [17.08.2018] Vendor replied forwarding message to appropriate team. [21.08.2018] Vendor responds asking more details. [22.08.2018] Replied to the vendor requesting PGP key. [23.08.2018] Vendor sends PGP key. [27.08.2018] Sent details to the vendor. [29.08.2018] Vendor confirms the issues developing patches. [29.08.2018] Working with the vendor. [17.09.2018] Vendor releases new firmware updates to address these issues. [06.10.2018] Coordinated public security advisory released. PoC: flir_traffic_stream.txt Credits: Vulnerability discovered by Gjoko Krstic -