English
¢¸¢· µÚ·Î
Ãë¾àÁ¡ID 26804
À§Çèµµ 40
Æ÷Æ® 139.445
ÇÁ·ÎÅäÄÝ TCP
ºÐ·ù SMB
»ó¼¼¼³¸í ÇØ´ç ½Ã½ºÅÛ¿¡´Â 2017³â 4¿ù Microsoft º¸¾È ¾÷µ¥ÀÌÆ®°¡ ¼³Ä¡µÇ¾î ÀÖÁö ¾ÊÀ½

- ¿ÀǼҽº libjpeg À̹ÌÁö ¶óÀ̺귯¸®¿¡¼­ ¸Þ¸ð¸®ÀÇ °´Ã¼¸¦ À߸ø ´Ù·ç¾î Á¤º¸À¯Ãâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2013-6629)

- Win32k component¿¡¼­ Ä¿³Î Á¤º¸¸¦ À߸ø ´Ù·ç¾î Á¤º¸À¯Ãâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0058)

- Microsoft Graphics Component¿¡¼­ ¸Þ¸ð¸® °´Ã¼¸¦ À߸ø ´Ù·ç¾î ´ÙÁß ±ÇÇÑ »ó½Â Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0155, CVE-2017-0156)

- VBScript ¿£Áø¿¡¼­ ¸Þ¸ð¸® °´Ã¼¸¦ À߸ø ´Ù·ç¾î °áÇÔÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0158)

- °Ô½ºÆ® OS¿¡¼­ ÀÔ·ÂÇÑ °ªÀ» À߸ø üũÇÏ¿© Windows Hyper-V Network Switch¿¡ ´ÙÁß °áÇÔÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0163, CVE-2017-0180, CVE-2017-0182, CVE-2017-0183)

- ¿äûÇÑ ±æÀ̸¦ À߸ø °è»êÇÏ¿© LDAP¿¡ °áÇÔÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0166)

- »ç¿ëÀÚ°¡ ÀÔ·ÂÇÑ °ªÀ» À߸ø üũÇÏ¿© Windows Hyper-V Network Switch¿¡ Á¤º¸À¯Ãâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0168)

- °Ô½ºÆ® OSÀÇ ±ÇÇÑÀÌ ºÎ¿©µÈ »ç¿ëÀÚ°¡ ÀÔ·ÂÇÑ °ªÀ» À߸ø üũÇÏ¿© Hyper-V¿¡ ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0184)

- ¸Þ¸ð¸®ÀÇ °´Ã¼¸¦ À߸ø ´Ù·ç¾î Windows¿¡ °áÇÔÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0191)

- ¸Þ¸ð¸®ÀÇ °´Ã¼¸¦ À߸ø ´Ù·ç¾î Adobe Type Manager Font Driver (ATMFD.dll)¿¡¼­ Á¤º¸À¯Ãâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0192)

- Á¶ÀÛµÈ ÆÄÀÏÀ» À߸ø ´Ù·ç¾î Microsoft Office ¿Í Windows WordPad¿¡¼­ ÀÓÀÇÀÇ Äڵ尡 ½ÇÇàµÉ ¼ö ÀÖ´Ù. (CVE-2017-0199)

- Internet Explorer¿¡¼­ »ç¿ëÀÚ ÀԷ°ªÀ» À߸ø üũÇÏ¿© ¸Þ¸ð¸® ºØ±« Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2017-0202)

* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº Á¡°ËÇϱâ À§ÇÑ È£½ºÆ®·Î ·Î±×ÀÎ ÇÒ ¼ö ÀÖ´Â °ü¸®ÀÚ ±ÇÇÑÀ» °¡Áø °èÁ¤À» ÇÊ¿ä·Î ÇÑ´Ù. ÀÌ·¯ÇÑ Á¶°ÇÀÌ ¾ÈµÇ¸é Á¡°ËÀ» ¼öÇàÇÒ ¼ö ¾øÀ¸¸ç ¸ðµç Ãë¾àÇÑ È£½ºÆ®µé¿¡ ´ëÇؼ­ °ÅÁþ À½¼º¹ÝÀÀ(False Negative)À» º¸ÀÏ ¼ö ÀÖ´Ù.

* Âü°í »çÀÌÆ®:
https://support.microsoft.com/en-us/help/4015549/windows-7-windows-server-2008-r2-sp1-update-kb4015549
https://support.microsoft.com/en-us/help/4015550/windows-8-1-windows-server-2012-r2-update-kb4015550
https://support.microsoft.com/en-us/help/4015583/windows-10-update-kb4015583
https://support.microsoft.com/en-us/help/4015551/windows-server-2012-update-kb4015551

* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Windows Vista SP2
Windows Vista x64 SP2
Windows Server 2008 SP2
Windows Server 2008 x64 SP2
Windows 7 SP1
Windows 7 x64 SP1
Windows Server 2008 R2 SP1
Windows Server 2008 R2 x64 SP1
Windows 8.1
Windows Server 2012
Windows Server 2012 R2
Windows 10
Windows Server 2016
ÇØ°áÃ¥ ´ÙÀ½ ¸¶ÀÌÅ©·Î¼ÒÇÁÆ® º¸¾È °Ô½Ã¹° 2017³â 4¿ù Microsoft º¸¾È ¾÷µ¥ÀÌÆ®¸¦ ÂüÁ¶ÇÏ¿© ½Ã½ºÅÛ¿¡ ´ëÇÑ ÀûÀýÇÑ ÆÐÄ¡¸¦ Àû¿ëÇÑ´Ù:
https://support.microsoft.com/en-us/help/4015549/windows-7-windows-server-2008-r2-sp1-update-kb4015549
https://support.microsoft.com/en-us/help/4015550/windows-8-1-windows-server-2012-r2-update-kb4015550
https://support.microsoft.com/en-us/help/4015583/windows-10-update-kb4015583
https://support.microsoft.com/en-us/help/4015551/windows-server-2012-update-kb4015551
-- ¶Ç´Â --
Windows Ç÷§ÆûµéÀ» À§ÇÑ ÆÐÄ¡µéÀº ¶ÇÇÑ Microsoft Windows Update À¥ »çÀÌÆ®ÀÎ http://windowsupdate.microsoft.com ¿¡¼­µµ ±¸ÇÒ ¼ö ÀÖ´Ù. Windows Update´Â »ç¿ë ÁßÀÎ WindowsÀÇ ¹öÀüÀ» ÀÚµ¿À¸·Î ã¾Æ³»°í ÀûÀýÇÑ ÆÐÄ¡¸¦ Á¦°øÇØ ÁØ´Ù.
°ü·Ã URL CVE-2013-6629,CVE-2017-0058,CVE-2017-0155,CVE-2017-0156,CVE-2017-0158,CVE-2017-0163,CVE-2017-0166,CVE-2017-0168,CVE-2017-0180,CVE-2017-0182 (CVE)
°ü·Ã URL 63676,97418,97427,97428,97435,97441,97444,97446,97452,97455,97462,97465,97466,97471,97498,97507,97512 (SecurityFocus)
°ü·Ã URL (ISS)