| Ãë¾àÁ¡ID |
28300 |
| À§Çèµµ |
40 |
| Æ÷Æ® |
139,445 |
| ÇÁ·ÎÅäÄÝ |
TCP |
| ºÐ·ù |
SMB |
| »ó¼¼¼³¸í |
¿ø°ÝÀÇ È£½ºÆ®¿¡ Oracle(¿¹ÀüÀÇ Sun) Java SE³ª ºñÁö´Ï½º¿ë JavaÀÇ 6 Update 26 / 5.0 Update 30 / 1.4.2.32 ¹öÀüÀÌ ÇØ´çµÈ´Ù.
ÇØ´ç ¹öÀü¿¡ Æ÷ÇÔµÈ ´ÙÀ½ÀÇ ÄÄÆ÷³ÍÆ®µéÀº ÀáÀçÀûÀ¸·Î º¸¾È À̽´¸¦ °¡Áö°í ÀÖ´Ù :
- AWT
- Deployment
- Deserialization
- Hotspot
- Java Runtime Environment
- Networking
- NIO
- SAAJ
- Sound
- Swing
* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº ÀÌ Ãë¾àÁ¡À» Á¡°ËÇϱâ À§ÇØ ÇØ´ç Oracle µ¥ÀÌÅͺ£À̽º ¼¹öÀÇ ¹öÀü Á¤º¸¸¸À» È®ÀÎÇÑ´Ù. µû¶ó¼ °ÅÁþ ¾ç¼º¹ÝÀÀ(False Positive)À» º¸ÀÏ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®:
http://www.oracle.com/technetwork/topics/security/javacpujune2011-313339.html
http://www.zerodayinitiative.com/advisories/ZDI-11-182/
http://www.zerodayinitiative.com/advisories/ZDI-11-183/
http://www.zerodayinitiative.com/advisories/ZDI-11-184/
http://www.zerodayinitiative.com/advisories/ZDI-11-185/
http://www.zerodayinitiative.com/advisories/ZDI-11-186/
http://www.zerodayinitiative.com/advisories/ZDI-11-187/
http://www.zerodayinitiative.com/advisories/ZDI-11-188/
http://www.zerodayinitiative.com/advisories/ZDI-11-189/
http://www.zerodayinitiative.com/advisories/ZDI-11-190/
http://www.zerodayinitiative.com/advisories/ZDI-11-191/
http://www.zerodayinitiative.com/advisories/ZDI-11-192/
http://www.securityfocus.com/archive/1/518303/30/0/threaded
http://www.securityfocus.com/archive/1/518304/30/0/threaded
http://www.securityfocus.com/archive/1/518307/30/0/threaded
http://www.securityfocus.com/archive/1/518305/30/0/threaded
http://www.securityfocus.com/archive/1/518306/30/0/threaded
http://www.securityfocus.com/archive/1/518309/30/0/threaded
http://www.securityfocus.com/archive/1/518308/30/0/threaded
http://www.securityfocus.com/archive/1/518315/30/0/threaded
http://www.securityfocus.com/archive/1/518313/30/0/threaded
http://www.securityfocus.com/archive/1/518312/30/0/threaded
http://www.securityfocus.com/archive/1/518311/30/0/threaded
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
JDK/JRE 6 update 26, JDK update 5.0 update 30, SDK 1.4.2_32 or later
Microsoft Windows Any version
Linux Any version
Unix Any version |
| ÇØ°áÃ¥ |
Oracle »ç´Â ÀÌ ¹®Á¦µéÀ» ÇØ°áÇÒ ¼ö ÀÖ´Â Critical Patch Update¸¦ ³» ³õ¾Ò´Ù. ÀûÀýÇÑ ÆÐÄ¡ ȹµæ ¹× Àû¿ë¿¡ °üÇÑ Á¤º¸´Â ´ÙÀ½ 2011³â 6¿ù Oracle Critical Patch Update¿¡¼ ãÀ» ¼ö ÀÖ´Ù:
http://blogs.oracle.com/security/2011/06/june_2011_java_se_and_java.html |
| °ü·Ã URL |
CVE-2011-0786,CVE-2011-0788,CVE-2011-0802,CVE-2011-0814,CVE-2011-0815,CVE-2011-0817,CVE-2011-0862,CVE-2011-0863,CVE-2011-0864 (CVE) |
| °ü·Ã URL |
48133,48134,48135,48136,48137,48138,48139,48140,48141,48142,48143,48144,48145,48146,48147,48148,48149 (SecurityFocus) |
| °ü·Ã URL |
(ISS) |
|
