| Ãë¾àÁ¡ID |
23313 |
| À§Çèµµ |
30 |
| Æ÷Æ® |
139 |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
Samba |
| »ó¼¼¼³¸í |
¿ø°Ý È£½ºÆ®¿¡ Samba 4.12.2 ÀÌÀü 4.12.x ¹öÀüÀÌ ¼³Ä¡µÇ¾î ÀÖ´Ù. ÇØ´ç ¹öÀüµéÀº ´ÙÀ½°ú °°Àº Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù.
- Samba AD(Active Directory) DC(Domain Controller)¿¡¼ ¸Þ¸ð¸® 󸮸¦ ¿Ã¹Ù¸£°Ô ÇÏÁö ¸ñÇÏ¿© Use-After-Free Ãë¾àÁ¡ÀÌ ¹ß»ýÇÑ´Ù. (CVE-2020-10700)
- Samba AD DC¿¡¼ LDAP ÆÐŶ 󸮸¦ ¿Ã¹Ù¸£°Ô ÇÏÁö ¸øÇÏ¿© ¸Þ¸ð¸® ¿À¹öÇ÷ο찡 ¹ß»ýÇÑ´Ù. ÀÌ·Î ÀÎÇØ ¼ºñ½º °ÅºÎ°¡ ¹ß»ýÇÒ ¼ö ÀÖ´Ù. (CVE-2020-10704)
* Âü°í »çÀÌÆ®:
https://www.samba.org/samba/security/CVE-2020-10700.html
https://www.samba.org/samba/security/CVE-2020-10704.html
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Samba Project, Samba versions 4.12.2 ÀÌÀüÀÇ 4.12.x ¹öÀüµé
Linux Any version
Unix Any version |
| ÇØ°áÃ¥ |
Samba À¥ »çÀÌÆ®ÀÎ https://www.samba.org/samba/download/¿¡¼ ±¸ÇÒ ¼ö ÀÖ´Â SambaÀÇ °¡Àå ÃֽŠ¹öÀü (4.12.2 ȤÀº ÀÌÈÄ ¹öÀü)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù. |
| °ü·Ã URL |
CVE-2020-10700,CVE-2020-10704 (CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
