English
¢¸¢· µÚ·Î
Ãë¾àÁ¡ID 26805
À§Çèµµ 40
Æ÷Æ® 139.445
ÇÁ·ÎÅäÄÝ TCP
ºÐ·ù SMB
»ó¼¼¼³¸í ÇØ´ç ½Ã½ºÅÛ¿¡´Â Microsoft WANNA CRY º¸¾È ¾÷µ¥ÀÌÆ®°¡ ¼³Ä¡µÇ¾î ÀÖÁö ¾ÊÀ½

- Microsoft Server Message Block 1.0 (SMBv1)¿¡´Â ƯÁ¤ ¿äûÀÇ ºÎÀûÀýÇÑ Ã³¸®·Î ÀÎÇÑ ´ÙÁß ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡µéÀÌ Á¸ÀçÇÑ´Ù. ÀÎÁõµÇÁö ¾ÊÀº ¿ø°Ý °ø°ÝÀڴ Ư¼ö Á¦ÀÛµÈ ÆÐŶÀ» ÅëÇØ ºÎÁ¤ Äڵ带 ½ÇÇàÇϱâ À§ÇÏ¿© ÀÌ Ãë¾àÁ¡µéÀ» ¾Ç¿ëÇÒ ¼ö ÀÖ´Ù. (CVE-2017-0143, CVE-2017-0144, CVE-2017-0145, CVE-2017-0146, CVE-2017-0148)

- Microsoft Server Message Block 1.0 (SMBv1)¿¡´Â ƯÁ¤ ¿äûÀÇ ºÎÀûÀýÇÑ Ã³¸®·Î ÀÎÇÑ Á¤º¸ ³ëÃâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. ÀÎÁõµÇÁö ¾ÊÀº ¿ø°Ý °ø°ÝÀڴ Ư¼ö Á¦ÀÛµÈ ÆÐŶÀ» ÅëÇØ ¹Î°¨ Á¤º¸¸¦ ³ëÃâ½ÃÅ°±â À§ÇÏ¿© ÀÌ Ãë¾àÁ¡µéÀ» ¾Ç¿ëÇÒ ¼ö ÀÖ´Ù. (CVE-2017-0147)

ETERNALBLUE, ETERNALCHAMPION, ETERNALROMANCE, ETERNALSYNERGYÀº 2017/04/14¿¡ Shadow Brokers¿¡ ÀÇÇÏ¿© µå·¯³­ ¿©·¯ Ãë¾àÁ¡µé Áß ÇϳªÀÌ´Ù.
WannaCry / WannaCrypt ´Â ETERNALBLUE °ø°Ý¿¡ »ç¿ëµÇ´Â ·£¼¶¿þ¾î ÇÁ·Î±×·¥ÀÌ°í, EternalRocksÀº 7°³ÀÇ Ãë¾àÁ¡ °ø°Ý ¹æ½Ä¿¡ »ç¿ëµÇ´Â ¿úÀÌ´Ù.

* Âü°í »çÀÌÆ®:
https://technet.microsoft.com/library/security/MS17-010
https://blogs.technet.microsoft.com/msrc/2017/04/14/protecting-customers-and-evaluating-risk/
https://blogs.technet.microsoft.com/mmpc/2017/05/12/wannacrypt-ransomware-worm-targets-out-of-date-systems/
https://blogs.technet.microsoft.com/msrc/2017/05/12/customer-guidance-for-wannacrypt-attacks/
https://github.com/stamparm/EternalRocks/

* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Windows Vista SP2
Windows Vista x64 SP2
Windows Server 2008 SP2
Windows Server 2008 x64 SP2
Windows 7 SP1
Windows 7 x64 SP1
Windows Server 2008 R2 SP1
Windows Server 2008 R2 x64 SP1
Windows 8.1
Windows Server 2012
Windows Server 2012 R2
Windows 10
Windows Server 2016
ÇØ°áÃ¥ Windows Ç÷§ÆûµéÀ» À§ÇÑ ÆÐÄ¡µéÀº Microsoft Windows Update À¥ »çÀÌÆ®ÀÎ http://windowsupdate.microsoft.com ¿¡¼­µµ ±¸ÇÒ ¼ö ÀÖ´Ù. Windows Update´Â »ç¿ë ÁßÀÎ WindowsÀÇ ¹öÀüÀ» ÀÚµ¿À¸·Î ã¾Æ³»°í ÀûÀýÇÑ ÆÐÄ¡¸¦ Á¦°øÇØ ÁØ´Ù.
°ü·Ã URL CVE-2017-0143,CVE-2017-0144,CVE-2017-0145,CVE-2017-0146,CVE-2017-0147,CVE-2017-0148 (CVE)
°ü·Ã URL 96703,96704,96705,96706,96707,96709 (SecurityFocus)
°ü·Ã URL (ISS)