English
¢¸¢· µÚ·Î
Ãë¾àÁ¡ID 50098
À§Çèµµ 40
Æ÷Æ® 139,445
ÇÁ·ÎÅäÄÝ TCP
ºÐ·ù SMB
»ó¼¼¼³¸í ÇØ´ç È£½ºÆ®¿¡´Â WiresharkÀÇ 1.12.13 ÀÌÀü ¹öÀüÀÌ ¼³Ä¡µÇ¾î ÀÖ´Ù. WiresharkÀº °¡Àå À¯¸íÇÑ freeware ÆÐŶ ºÐ¼® ÇÁ·Î±×·¥ÀÌ´Ù. ¼³Ä¡µÇ¾î ÀÖ´Â WiresharkÀÇ ¹öÀüÀº ´ÙÁß ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù.

- packet-ncp2222.inc ÆÄÀÏÀÇ dissect_nds_request() ÇÔ¼ö¿¡¼­ ³Î Æ÷ÀÎÅÍ ÂüÁ¶ ¿À·ù°¡ Á¸ÀçÇÑ´Ù. (CVE-2016-6504)

- packet-packetbb.c ÆÄÀÏÀÇ dissect_pbb_tlvblock() ÇÔ¼ö¿¡¼­ 0À¸·Î ³ª´©´Â ¿À·ù°¡ ÀÖ¾î ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2016-6505)

- packet_wsp.c ÆÄÀÏ¿¡¼­ wkh_content_disposition() ÇÔ¼ö°¡ ¿ÀÇÁ¼Â Á¦·Î¸¦ ¸®ÅÏÇÒ ¶§ add_headers() ÇÔ¼ö¿¡ °áÇÔÀÌ Á¸ÀçÇØ ¼­ºñ½º °ÅºÎ³ª ¹«ÇÑ·çÇÁ »óÅ¿¡ ºüÁú ¼ö ÀÖ´Ù. (CVE-2016-6506)

- packet-mmse.c ÆÄÀÏÀÇ tvb_get_guintvar() ÇÔ¼ö¿¡¼­ ¾ÆÁÖ Å« °ªÀ» ´Ù·ê ¶§ °áÇÔÀÌ Á¸ÀçÇÑ´Ù. (CVE-2016-6507)

- packet-rlc.c ÆÄÀÏÀÇ rlc_decode_li() ÇÔ¼ö¿¡¼­ À߸øµÈ Á¤¼ö ŸÀÔÀÌ »ç¿ëµÇ ¼­ºñ½º °ÅºÎ »óÅ¿¡ ºüÁú ¼ö ÀÖ´Ù. ÀÌ·Î ÀÎÇÏ¿© °úµµÇÑ CPU¸¦ »ç¿ëÇϰųª ¼­ºñ½º °ÅºÎ »óÅ¿¡ ºüÁú ¼ö ÀÖ´Ù. (CVE-2016-6508)

- packet-ldss.c ÆÄÀÏÀÇ dissect_ldss_transfer() ÇÔ¼ö¿¡ ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. (CVE-2016-6509)

- packet-rlc.c ÆÄÀÏÀÇ rlc_decode_li() ÇÔ¼ö¿¡ ¿À¹öÇ÷ο찡 Á¸ÀçÇÑ´Ù. (CVE-2016-6510)

- proto.c ÆÄÀÏÀÇ proto_tree_add_text_valist_internal() ÇÔ¼ö¿¡¼­ ÆÐŶÀ» À߸ø ´Ù·ç¾î ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÑ´Ù. ÀÌ·Î ÀÎÇÏ¿© °úµµÇÑ CPU¸¦ »ç¿ëÇϰųª ¼­ºñ½º °ÅºÎ »óÅ¿¡ ºüÁú ¼ö ÀÖ´Ù. (CVE-2016-6511)

* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº Á¡°ËÇϱâ À§ÇÑ È£½ºÆ®·Î ·Î±×ÀÎ ÇÒ ¼ö ÀÖ´Â °ü¸®ÀÚ ±ÇÇÑÀ» °¡Áø °èÁ¤À» ÇÊ¿ä·Î ÇÑ´Ù. ÀÌ·¯ÇÑ Á¶°ÇÀÌ ¾ÈµÇ¸é Á¡°ËÀ» ¼öÇàÇÒ ¼ö ¾øÀ¸¸ç ¸ðµç Ãë¾àÇÑ È£½ºÆ®µé¿¡ ´ëÇؼ­ °ÅÁþ À½¼º¹ÝÀÀ(False Negative)À» º¸ÀÏ ¼ö ÀÖ´Ù.

* Âü°í »çÀÌÆ®:
https://www.wireshark.org/security/wnpa-sec-2016-40.html
https://www.wireshark.org/security/wnpa-sec-2016-41.html
https://www.wireshark.org/security/wnpa-sec-2016-42.html
https://www.wireshark.org/security/wnpa-sec-2016-43.html
https://www.wireshark.org/security/wnpa-sec-2016-44.html
https://www.wireshark.org/security/wnpa-sec-2016-45.html
https://www.wireshark.org/security/wnpa-sec-2016-46.html
https://www.wireshark.org/security/wnpa-sec-2016-47.html
https://www.wireshark.org/docs/relnotes/wireshark-1.12.13.html

* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû:
Wireshark 1.12.13 ÀÌÀü 1.12.x ¹öÀü
Microsoft Windows ¸ðµç ¹öÀü
ÇØ°áÃ¥ Wireshark À¥ »çÀÌÆ®ÀÎ http://www.wireshark.org/download/win32/all-versions/¿¡¼­ ±¸ÇÒ ¼ö ÀÖ´Â WiresharkÀÇ °¡Àå ÃֽŠ¹öÀü(1.12.13 ȤÀº ÀÌÈÄ)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù.
°ü·Ã URL CVE-2016-6504,CVE-2016-6505,CVE-2016-6506,CVE-2016-6507,CVE-2016-6508,CVE-2016-6509,CVE-2016-6510,CVE-2016-6511 (CVE)
°ü·Ã URL 92163,92164,92165,92166,92167,92168,92169,92173 (SecurityFocus)
°ü·Ã URL (ISS)