| Ãë¾àÁ¡ID |
22802 |
| À§Çèµµ |
30 |
| Æ÷Æ® |
80, ... |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
WWW |
| »ó¼¼¼³¸í |
¿ø°Ý È£½ºÆ®¿¡ Apache Tomcat 7.0.41 ÀÌÈÄ 7.0.79 ÀÌÀü ¹öÀüÀÌ ¼³Ä¡µÇ¾î ÀÖ´Ù. ÇØ´ç ¹öÀüÀº HTTP Vary ÇØ´õ°¡ ¿Ã¹Ù·Î Ãß°¡µÇÁö ¾Ê¾Æ CORS filter¿¡ °áÇÔÀÌ Á¸ÀçÇÑ´Ù. ÀÌ Ãë¾àÁ¡À¸·Î ÀÎÇØ ¿ø°ÝÀÇ °ø°ÝÀڴ Ŭ¶óÀ̾ðÆ® »çÀÌµå ¶Ç´Â ¼¹ö»çÀ̵å ij½Ã Æ÷ÀÌÁî´× °ø°ÝÀ» ÇÒ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®:
http://tomcat.apache.org/security-7.html#Fixed_in_Apache_Tomcat_7.0.79
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Apache Tomcat Server 7.0.79 ÀÌÀüÀÇ 7.0.x ¹öÀüµé
¸ðµç ¿î¿µÃ¼Á¦ ¸ðµç ¹öÀü |
| ÇØ°áÃ¥ |
Apache Software Foundation À¥ »çÀÌÆ®ÀÎ http://tomcat.apache.org/ ¿¡¼ ±¸ÇÒ ¼ö ÀÖ´Â Apache Tomcat ServerÀÇ °¡Àå ÃֽŠ¹öÀü(7.0.79 ȤÀº ÀÌÈÄ)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù. |
| °ü·Ã URL |
CVE-2017-7674 (CVE) |
| °ü·Ã URL |
100280 (SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
