| Ãë¾àÁ¡ID |
210147 |
| À§Çèµµ |
40 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
CGI |
| »ó¼¼¼³¸í |
ÀÚ¹Ù ½ºÅ©¸³Æ® Ŭ¶óÀ̾ðÆ®ÂÊ EvalÀ» »ç¿ëÇؼ´Â ¾ÈµÈ´Ù. Eval »ç¿ëÀº ÇÁ·Î±×·¥ ´ÙÀÚÀÎ »óÀÇ ¹®Á¦¸¦ ÀÏÀ¸Å²´Ù.
ÇÁ·Î±×·¥»ó¿¡¼´Â °ËÁõµÇÁö ¾ÊÀº ÀԷ°ªÀ» ½ÇÇàÇؼ´Â ¾ÈµÇ¸ç, ÆäÀÌÁöÀÇ Äõ¸® ½ºÆ®¸µÀ¸¸£ ÀԷ¹ÞÀº °ªÀ» ¹Ù·Î ½ÇÇàÇÏ´Â °ÍÀº Å©·Î½º »çÀÌÆ® ½ºÅ©¸³Æ® °ø°Ý¿¡ Ãë¾àÇÏ´Ù.
* Âü°í »çÀÌÆ®:
https://www.owasp.org/index.php/OWASP_AJAX_Security_Guidelines#Don.27t_use_eval
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
¸ðµç HTTP ¼¹ö ¸ðµç ¹öÀü |
| ÇØ°áÃ¥ |
ÀÚ¹Ù ½ºÅ©¸³Æ® Ŭ¶óÀ̾ðÆ®ÂÊ »ç¿ë½Ã EvalÀ» »ç¿ëÇؼ´Â ¾ÈµÈ´Ù. ¸ðµç »ç¿ëÀÚ ÀԷ°ªÀ» °ËÁõÇÏ¿©¾ß ÇÑ´Ù. |
| °ü·Ã URL |
(CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
