| Ãë¾àÁ¡ID |
22271 |
| À§Çèµµ |
40 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
WWW |
| »ó¼¼¼³¸í |
ÇØ´ç Apache À¥ ¼¹ö¿¡´Â mod_rootme ¸ðµâÀÌ °¡µ¿ ÁßÀÎ °ÍÀ¸·Î ³ªÅ¸³´Ù.
ÀÌ mod_rootme ¸ðµâÀº ¾Æ¹«·± ·Î±×ÀÎ °úÁ¤ ¾øÀ̵µ ÀÓÀÇÀÇ »ç¿ëÀÚµéÀÌ ´ÙÀ½°ú °°ÀÌ ´Ü¼øÇÑ GET HTTP ¿äû(GET root HTTP/1.0)À» »ç¿ëÇÏ¿© ·çÆ® ½©(shell) ¾×¼¼½º ±ÇÇÑÀ» ȹµæÇÏ´Â °ÍÀ» Çã¿ëÇÑ´Ù. µû¶ó¼, ÀÌ ¸ðµâÀº Apache ¼¹ö ¾È¿¡ ¹éµµ¾î¸¦ ¼³Ä¡Çϱâ À§ÇØ ½±°Ô ÀÌ¿ëµÉ ¼ö ÀÖ´Ù.
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Apache Web server Any version
Unix Any version
Linux Any version |
| ÇØ°áÃ¥ |
'httpd.conf/modules.conf' ÆÄÀÏ¿¡¼ mod_rootme ¸ðµâÀ» »èÁ¦ÇÏ´Â ¹æ¹ýÀ¸·Î Apache À¥ ¼¹ö·ÎºÎÅÍ ¸ðµâÀ» Á¦°ÅÇÏ¿©¾ß ÇÑ´Ù. |
| °ü·Ã URL |
CVE-1999-0660 (CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
