| Ãë¾àÁ¡ID |
26826 |
| À§Çèµµ |
40 |
| Æ÷Æ® |
139.445 |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
SMB |
| »ó¼¼¼³¸í |
ÇØ´ç ½Ã½ºÅÛ¿¡´Â 2019³â 1¿ù Microsoft º¸¾È ¾÷µ¥ÀÌÆ®°¡ ¼³Ä¡µÇ¾î ÀÖÁö ¾ÊÀ½.
- Windows Ä¿³ÎÀÌ ¸Þ¸ð¸®ÀÇ °³Ã¼¸¦ ºÎÀûÀýÇÏ°Ô Ã³¸®Çϸé Á¤º¸ À¯Ãâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÕ´Ï´Ù. ÀÌ Ãë¾àÁ¡À» ¼º°øÀûÀ¸·Î ¾Ç¿ë ÇÑ °ø°ÝÀÚ´Â »ç¿ëÀÚ ½Ã½ºÅÛÀ» ¼Õ»ó½ÃÅ°´Â Á¤º¸¸¦ ¾òÀ» ¼ö ÀÖ½À´Ï´Ù. ÀÎÁõ µÈ °ø°ÝÀڴ Ư¼öÇÏ°Ô Á¶ÀÛ µÈ ÀÀ¿ë ÇÁ·Î±×·¥À» ½ÇÇàÇÏ¿©ÀÌ Ãë¾àÁ¡À» ¾Ç¿ë ÇÒ ¼ö ÀÖ½À´Ï´Ù. (CVE-2019-0569)
- CORS (Cross-Origin Resource Sharing) ±¸¼ºÀ» ¿ìȸ ÇÒ ¼öÀÖ´Â .NET Framework ¹× .NET Core¿¡ Á¤º¸ À¯Ãâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÕ´Ï´Ù. Ãë¾àÁ¡À» ¼º°øÀûÀ¸·Î ¾Ç¿ë ÇÑ °ø°ÝÀÚ´Â ÀϹÝÀûÀ¸·Î Á¦ÇÑµÈ ÄÜÅÙÃ÷¸¦ À¥ ÀÀ¿ë ÇÁ·Î±×·¥¿¡¼ °Ë»ö ÇÒ ¼ö ÀÖ½À´Ï´Ù. (CVE-2019-0545)
- Windows Jet µ¥ÀÌÅͺ£À̽º ¿£ÁøÀÌ ¸Þ¸ð¸®ÀÇ °³Ã¼¸¦ À߸ø ó¸®ÇÏ¸é ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÕ´Ï´Ù. ÀÌ Ãë¾àÁ¡À» ¼º°øÀûÀ¸·Î ¾Ç¿ë ÇÑ °ø°ÝÀÚ´Â ÇÇÇØ ½Ã½ºÅÛ¿¡¼ ÀÓÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ½À´Ï´Ù. ħÀÔÀÚ´Â ÇÇÇØÀÚ°¡ Ư¼öÇÏ°Ô Á¶ÀÛ µÈ ÆÄÀÏÀ» ¿µµ·Ï À¯ÀÎÇÔÀ¸·Î½áÀÌ Ãë¾àÁ¡À» ¾Ç¿ë ÇÒ ¼ö ÀÖ½À´Ï´Ù. (CVE-2019-0538, CVE-2019-0575, CVE-2019-0576, CVE-2019-0577, CVE-2019-0578, CVE-2019-0579, CVE-2019-0580, CVE-2019-0581, CVE -2019-0582, CVE-2019-0583, CVE-2019-0584)
- MSHTML ¿£ÁøÀÌ ºÎÀûÀýÇÏ°Ô ÀÔ·ÂÀÇ À¯È¿¼ºÀ» °Ë»çÇÏ´Â ¹æ½Ä¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÕ´Ï´Ù. °ø°ÝÀÚ´Â ÇöÀç »ç¿ëÀÚÀÇ ÄÁÅؽºÆ®¿¡¼ ÀÓÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ½À´Ï´Ù. (CVE-2019-0541)
- Windows Ä¿³ÎÀÌ ¸Þ¸ð¸®ÀÇ °³Ã¼¸¦ ºÎÀûÀýÇÏ°Ô Ã³¸®Çϸé Á¤º¸ À¯Ãâ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÕ´Ï´Ù. ÀÌ Ãë¾àÁ¡À» ¼º°øÀûÀ¸·Î ¾Ç¿ë ÇÑ °ø°ÝÀÚ´Â »ç¿ëÀÚ ½Ã½ºÅÛÀ» ¼Õ»ó½ÃÅ°´Â Á¤º¸¸¦ ¾òÀ» ¼ö ÀÖ½À´Ï´Ù. (CVE-2019-0536, CVE-2019-0549, CVE-2019-0554)
- Windows°¡ ÀÎÁõ ¿äûÀ» ºÎÀûÀýÇÏ°Ô Ã³¸® ÇÒ ¶§ ±ÇÇÑ »ó½Â Ãë¾àÁ¡ÀÌ Á¸ÀçÇÕ´Ï´Ù. ÀÌ Ãë¾àÁ¡À» ¼º°øÀûÀ¸·Î ¾Ç¿ë ÇÑ °ø°ÝÀÚ´Â »ó½Â µÈ »óȲ¿¡¼ ÇÁ·Î¼¼½º¸¦ ½ÇÇàÇÒ ¼ö ÀÖ½À´Ï´Ù. ħÀÔÀÚ´Â ÇÇÇØ ½Ã½ºÅÛ¿¡¼ Ư¼öÇÏ°Ô Á¶ÀÛ µÈ ÀÀ¿ë ÇÁ·Î±×·¥À» ½ÇÇàÇÏ¿©ÀÌ Ãë¾àÁ¡À» ¾Ç¿ë ÇÒ ¼ö ÀÖ½À´Ï´Ù. (CVE-2019-0543)
* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº Á¡°ËÇϱâ À§ÇÑ È£½ºÆ®·Î ·Î±×ÀÎ ÇÒ ¼ö ÀÖ´Â °ü¸®ÀÚ ±ÇÇÑÀ» °¡Áø °èÁ¤À» ÇÊ¿ä·Î ÇÑ´Ù. ÀÌ·¯ÇÑ Á¶°ÇÀÌ ¾ÈµÇ¸é Á¡°ËÀ» ¼öÇàÇÒ ¼ö ¾øÀ¸¸ç ¸ðµç Ãë¾àÇÑ È£½ºÆ®µé¿¡ ´ëÇؼ °ÅÁþ À½¼º¹ÝÀÀ(False Negative)À» º¸ÀÏ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®:
https://support.microsoft.com/en-us/help/4009469
https://support.microsoft.com/en-us/help/4009470
https://support.microsoft.com/en-us/help/4009471
https://support.microsoft.com/en-us/help/4000825
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Windows Server 2008 SP2
Windows Server 2008 x64 SP2
Windows 7 SP1
Windows 7 x64 SP1
Windows Server 2008 R2 SP1
Windows Server 2008 R2 x64 SP1
Windows 8.1
Windows Server 2012
Windows Server 2012 R2
Windows 10
Windows Server 2016 |
| ÇØ°áÃ¥ |
´ÙÀ½ ¸¶ÀÌÅ©·Î¼ÒÇÁÆ® º¸¾È °Ô½Ã¹° 2019³â 1¿ù Microsoft º¸¾È ¾÷µ¥ÀÌÆ®¸¦ ÂüÁ¶ÇÏ¿© ½Ã½ºÅÛ¿¡ ´ëÇÑ ÀûÀýÇÑ ÆÐÄ¡¸¦ Àû¿ëÇÑ´Ù:
https://support.microsoft.com/en-us/help/4009469
https://support.microsoft.com/en-us/help/4009470
https://support.microsoft.com/en-us/help/4009471
https://support.microsoft.com/en-us/help/4000825
-- ¶Ç´Â --
Windows Ç÷§ÆûµéÀ» À§ÇÑ ÆÐÄ¡µéÀº ¶ÇÇÑ Microsoft Windows Update À¥ »çÀÌÆ®ÀÎ http://windowsupdate.microsoft.com ¿¡¼µµ ±¸ÇÒ ¼ö ÀÖ´Ù. Windows Update´Â »ç¿ë ÁßÀÎ WindowsÀÇ ¹öÀüÀ» ÀÚµ¿À¸·Î ã¾Æ³»°í ÀûÀýÇÑ ÆÐÄ¡¸¦ Á¦°øÇØ ÁØ´Ù. |
| °ü·Ã URL |
CVE-2018-3639,CVE-2019-0536,CVE-2019-0538,CVE-2019-0541,CVE-2019-0543,CVE-2019-0545,CVE-2019-0549,CVE-2019-0554,CVE-2019-0569,CVE-2019-0575 (CVE) |
| °ü·Ã URL |
(SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
