| Ãë¾àÁ¡ID |
50022 |
| À§Çèµµ |
30 |
| Æ÷Æ® |
139,445 |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
SMB |
| »ó¼¼¼³¸í |
ÇØ´ç È£½ºÆ®¿¡´Â 1.4.14 ÀÌÀüÀÇ WiresharkÀÇ ¾î¶² ¹öÀüÀÌ ¼³Ä¡µÇ¾î ÀÖ´Ù. WiresharkÀº °¡Àå À¯¸íÇÑ freeware ÆÐŶ ºÐ¼® ÇÁ·Î±×·¥ÀÌ´Ù. ¼³Ä¡µÇ¾î ÀÖ´Â Wireshark³ª EtherealÀÇ ¹öÀüÀº ´ÙÀ½°ú °°Àº ´ÙÁß Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù.
- PPP dissector¿¡ ¼ºñ½º °ÅºÎ¸¦ À¯¹ßÇÏ´Â À߸øµÈ ÆÐŶµéÀ» Çã¿ëÇÏ´Â ¿À·ù°¡ Á¸ÀçÇÑ´Ù. (CVE-2012-4048)
- NFS dissector¿¡ CPUÀÚ¿øÀ» ¹«¸®ÇÏ°Ô ¼ÒºñÇÏ¿© ¼ºñ½º °ÅºÎ¸¦ À¯¹ßÇÏ´Â À߸øµÈ ÆÐŶÀ» Çã¿ëÇÏ´Â ¿À·ù°¡ Á¸ÀçÇÑ´Ù. (CVE-2012-4049)
* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº Á¡°ËÇϱâ À§ÇÑ È£½ºÆ®·Î ·Î±×ÀÎ ÇÒ ¼ö ÀÖ´Â °ü¸®ÀÚ ±ÇÇÑÀ» °¡Áø °èÁ¤À» ÇÊ¿ä·Î ÇÑ´Ù. ÀÌ·¯ÇÑ Á¶°ÇÀÌ ¾ÈµÇ¸é Á¡°ËÀ» ¼öÇàÇÒ ¼ö ¾øÀ¸¸ç ¸ðµç Ãë¾àÇÑ È£½ºÆ®µé¿¡ ´ëÇؼ °ÅÁþ À½¼º¹ÝÀÀ(False Negative)À» º¸ÀÏ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®:
http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=680056
https://bugs.wireshark.org/bugzilla/show_bug.cgi?id=7436
http://www.wireshark.org/security/wnpa-sec-2012-11.html
http://www.wireshark.org/security/wnpa-sec-2012-12.html
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Wireshark 1.4.x ~ 1.4.14 ÀÌÀü ¹öÀü
Microsoft Windows ¸ðµç ¹öÀü |
| ÇØ°áÃ¥ |
Wireshark À¥ »çÀÌÆ®ÀÎ http://www.wireshark.org/download/win32/all-versions/¿¡¼ ±¸ÇÒ ¼ö ÀÖ´Â WiresharkÀÇ °¡Àå ÃֽŠ¹öÀü(1.4.14 ȤÀº ÀÌÈÄ)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù. |
| °ü·Ã URL |
CVE-2012-4048,CVE-2012-4049 (CVE) |
| °ü·Ã URL |
54649 (SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
