| Ãë¾àÁ¡ID |
21181 |
| À§Çèµµ |
20 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
CGI |
| »ó¼¼¼³¸í |
IIS À¥¼¹ö¿¡ ÀÖ´Â perl.exeÀÇ ¹®Á¦Á¡À¸·Î ÀÌ ¼¹öÀÇ °¡»ó À¥ µð·ºÅ丮ÀÇ ½ÇÁ¦ À§Ä¡(location)¸¦ ¾Ë¾Æ³¾ ¼ö ÀÖÀ¸¸ç ´ÙÀ½°ú °°ÀÌ ¿äûÇÔÀ¸·Î½á °¡´ÉÇÏ´Ù:
GET /scripts/no-such-file.pl HTTP/1.0
°ø°ÝÀÚ´Â ÀÌ °áÇÔÀ» ÀÌ¿ëÇÏ¿© ÇØ´ç ½Ã½ºÅÛ¿¡ ´ëÇÑ ´õ ¸¹Àº Á¤º¸¸¦ ¾ò¾î³¾ ¼ö ÀÖÀ¸¸ç ´õ¿í´õ Á¤È®ÇÑ °ø°ÝÀ» °¡ÇÒ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®:
http://www.securityfocus.com/bid/194
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Microsoft IIS Server |
| ÇØ°áÃ¥ |
perl.exe ´ë½Å¿¡ perlis.dll¸¦ »ç¿ëÇØ¾ß ÇÑ´Ù. ±×¸®°í perlis.dllÀº °¡Àå ÃֽŠ¹öÀüÀÇ °ÍÀ» »ç¿ëÇÏ¿©¾ß ÇÑ´Ù. |
| °ü·Ã URL |
CVE-1999-0450 (CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
