| Ãë¾àÁ¡ID |
21616 |
| À§Çèµµ |
40 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
CGI |
| »ó¼¼¼³¸í |
ÇØ´ç À¥ ¼¹ö »óÀÇ 'AutoTheme for PostNuke'ÀÇ ¹öÀü¿¡´Â ºñÀΰ¡µÈ ¾×¼¼½º Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. AutoThemeÀº PostNuke ±×¸®°í PHP-Nuke CMS¸¦ À§ÇÑ HTML Theme(ÈÁ¦, ³íÁ¦) ½Ã½ºÅÛÀÌ´Ù. PostNuke¸¦ À§ÇÑ AutoTheme 1.7 ±×¸®°í AT-Lite .8Àº ¿ø°ÝÁöÀÇ °ø°ÝÀÚ°¡ modules/Blocks/pnadmin.php ½ºÅ©¸³Æ®¿¡ ÀÖ´Â ´Ù¼öÀÇ º¸¾È Ãë¾àÁ¡µé·Î ÀÎÇÏ¿© Blocks ¸ðµâ¿¡ ´ëÇÑ ºñÀΰ¡µÈ ¾×¼¼½º¸¦ ¾ò¾î³¾ ¼ö ÀÖ°Ô ÇØ ÁÙ ¼ö ÀÖ´Ù.
* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº ÀÌ Ãë¾àÁ¡À» Á¡°ËÇϱâ À§ÇØ ÇØ´ç À¥ ¼¹ö »ó¿¡ ¼³Ä¡µÈ 'AutoTheme for PostNuke'ÀÇ ¹öÀü Á¤º¸¸¸À» È®ÀÎÇÑ´Ù. µû¶ó¼ °ÅÁþ ¾ç¼º¹ÝÀÀ(False Positive)À» º¸ÀÏ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®:
http://www.securitytracker.com/alerts/2005/May/1013908.html
http://spidean.mckenzies.net/Article314.phtml
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Shawn McKenzie and Spidean, AutoTheme 1.7
Shawn McKenzie and Spidean, AutoTheme AT-Lite .8
¸ðµç ¿î¿µÃ¼Á¦ ¸ðµç ¹öÀü |
| ÇØ°áÃ¥ |
AutoTheme À¥ »çÀÌÆ®ÀÎ http://www.spidean.com/name-Downloads.phtml ¿¡¼ ¹®Á¦°¡ ÇØ°áµÈ »õ ¹öÀüÀÌ ´Ù¿î·Îµå °¡´ÉÇÒ ¶§ AutoThemeÀÇ °¡Àå ÃֽŠ¹öÀü(AutoTheme 1.7 ȤÀº AutoTheme AT-Lite .8 º¸´Ù »óÀ§ÀÇ ¹öÀü)À» ±¸ÇÏ¿© ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù. |
| °ü·Ã URL |
CVE-2005-1608 (CVE) |
| °ü·Ã URL |
13539 (SecurityFocus) |
| °ü·Ã URL |
20490 (ISS) |
|
