| Ãë¾àÁ¡ID |
21112 |
| À§Çèµµ |
30 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
CGI |
| »ó¼¼¼³¸í |
ASP Dot Ãë¾àÁ¡ ¹®Á¦ÇØ°á¿ë hot-fix°¡ ¼³Ä¡µÈ IIS 3.0Àº Request (GET /default.asp%2e¿Í °°ÀÌ) ÀÇ ³¡¿¡ %2e¸¦ Ãß°¡ÇÔÀ¸·Î½á ASP ÇÁ·Î±×·¥µé¿¡ ´ëÇÑ source code¸¦ ÀÐÀ» ¼ö ÀÖ´Ù. ASP ¼Ò½ºÄÚµåµéÀº ´ë°³ ·Î±×Àθí°ú Æнº¿öµå¿Í °°Àº ¹Î°¨ÇÑ Á¤º¸µéÀ» Æ÷ÇÔÇÑ´Ù.
¡Ø ¿ø·¡´Â . (dot)¸¦ URL ³¡¿¡ Ãß°¡Çϸé ÀÌ·± ¹ö±×°¡ ÀÖ¾ú´Âµ¥ À̹ø¿¡´Â . (dot) ´ë½Å¿¡ %2eÀ» ³ÖÀ¸¸é ÀÌ·± ¹ö±×°¡ ¹ß»ýÇÑ´Ù.
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Microsoft IIS Server |
| ÇØ°áÃ¥ |
ÀÌ ¹®Á¦°¡ fixµÈ IIS 4.0À¸·Î ¾÷±×·¹À̵å ÇØ¾ß ÇÑ´Ù. |
| °ü·Ã URL |
CVE-1999-0253 (CVE) |
| °ü·Ã URL |
1814 (SecurityFocus) |
| °ü·Ã URL |
621 (ISS) |
|
