| Ãë¾àÁ¡ID |
21108 |
| À§Çèµµ |
40 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
CGI |
| »ó¼¼¼³¸í |
ÇØ´ç À¥¼¹ö´Â O'Reilly WebSiteÀÎ °ÍÀ¸·Î º¸À̸ç '/cgi-shl/win-c-sample.exe' CGI°¡ ÀνºÅçµÇ¾î ÀÖ´Ù.
O'Reilly WebSite 2.0 ÀÌÀü ¹öÀüµé¿¡ Æ÷ÇÔµÈ win-c-sample.exe ÇÁ·Î±×·¥Àº attacker°¡ À¥¼¹ö³»ÀÇ ÀÓÀÇÀÇ ¸í·ÉÀ» ¼öÇàÇÒ ¼ö Buffer Overflow Ãë¾àÁ¡À» °¡Áö°í ÀÖ´Ù. ±× ¸í·ÉÀº httpd µ¥¸óÀÇ ±ÇÇÑÀ» °¡Áö°í ½ÇÇàµÈ´Ù.
* Âü°í »çÀÌÆ®:
http://www.iss.net/security_center/static/295.php
http://website.oreilly.com/
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Web Server |
| ÇØ°áÃ¥ |
CGI µð·ºÅ丮µé·Î ºÎÅÍ '/cgi-shl/win-c-sample.exe' ÆÄÀÏÀ» Æ÷ÇÔÇÑ ¿¹Á¦ ÇÁ·Î±×·¥µéÀº »èÁ¦ÇÏ¿©¾ß ÇÑ´Ù. ±×¸®°í ¼¹ö´Â WebsiteÀÇ °¡Àå ÃֽŠ¹öÀüÀ¸·Î ¾÷±×·¹À̵åÇÑ´Ù. |
| °ü·Ã URL |
CVE-1999-0178 (CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
