Ãë¾àÁ¡ID |
50327 |
À§Çèµµ |
30 |
Æ÷Æ® |
139.445 |
ÇÁ·ÎÅäÄÝ |
TCP |
ºÐ·ù |
SMB |
»ó¼¼¼³¸í |
¿ø°Ý Windows È£½ºÆ®¿¡ ¼³Ä¡µÈ Wireshark ¹öÀüÀº 3.2.13 ÀÌÀüÀÔ´Ï´Ù. µû¶ó¼ wireshark-3.2.13 ±Ç°í¿¡ ¾ð±Þ µÈ Ãë¾àÁ¡ÀÇ ¿µÇâÀ» ¹Þ½À´Ï´Ù.
-MS-WSP dissector´Â °úµµÇÑ ¾çÀÇ ¸Þ¸ð¸®¸¦ ¼Òºñ ÇÒ ¼ö ÀÖ½À´Ï´Ù. Wireshark°¡ À߸øµÈ ÆÐŶÀ» ¿ÍÀ̾ ÁÖÀÔÇϰųª ´©±º°¡°¡ À߸øµÈ ÆÐŶ ÃßÀû ÆÄÀÏÀ» Àеµ·Ï ¼³µæÇÏ¿© °úµµÇÑ CPU ¸®¼Ò½º¸¦ ¼ÒºñÇÏ°Ô ÇÒ ¼ö ÀÖ½À´Ï´Ù. (CVE-2021-22207)
* ¾Ë¸²: ÀÌ Á¡°ËÇ׸ñÀº Á¡°ËÇϱâ À§ÇÑ È£½ºÆ®·Î ·Î±×ÀÎ ÇÒ ¼ö ÀÖ´Â °ü¸®ÀÚ ±ÇÇÑÀ» °¡Áø °èÁ¤À» ÇÊ¿ä·Î ÇÑ´Ù. ÀÌ·¯ÇÑ Á¶°ÇÀÌ ¾ÈµÇ¸é Á¡°ËÀ» ¼öÇàÇÒ ¼ö ¾øÀ¸¸ç ¸ðµç Ãë¾àÇÑ È£½ºÆ®µé¿¡ ´ëÇؼ °ÅÁþ À½¼º¹ÝÀÀ(False Negative)À» º¸ÀÏ ¼ö ÀÖ´Ù.
* Âü°í »çÀÌÆ®: https://www.wireshark.org/docs/relnotes/wireshark-3.2.13.html https://www.wireshark.org/security/wnpa-sec-2021-04
* ¿µÇâÀ» ¹Þ´Â Ç÷§Æû: Wireshark 3.2.13 ÀÌÀü 3.2.x ¹öÀü Microsoft Windows ¸ðµç ¹öÀü |
ÇØ°áÃ¥ |
Wireshark À¥ »çÀÌÆ®ÀÎ http://www.wireshark.org/download/win32/all-versions/¿¡¼ ±¸ÇÒ ¼ö ÀÖ´Â WiresharkÀÇ °¡Àå ÃֽŠ¹öÀü(3.2.13 ȤÀº ÀÌÈÄ)À¸·Î ¾÷±×·¹À̵å ÇÏ¿©¾ß ÇÑ´Ù. |
°ü·Ã URL |
CVE-2021-22207 (CVE) |
°ü·Ã URL |
(SecurityFocus) |
°ü·Ã URL |
(ISS) |
|