.jpg)
CVE-2015-2916, CVE-2015-2917
[º¸¾È´º½º ÁÖ¼ÒÇü] ÇöÁö ½Ã°¢À¸·Î 21ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 21ÀÏ¿¡¼ 22ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÔ´Ï´Ù.
1. CVE-2015-2864
À©µµ¿ì 10.0.2.119 ÀÌÀü ¹öÀü, OS X 12.0.2.116 ÀÌÀü ¹öÀü, Linux 10.0.2.104 ÀÌÀü ¹öÀüÀÇ Retrospect and Retrospect Client¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î Æнº¿öµå Çؽø¦ Á¦´ë·Î ÀÛµ¿ÇÒ ¼ö ¾ø°Ô ÇÕ´Ï´Ù. ÀÌ´Â °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ Ãæµ¹À» ·¹¹ö¸®Â¡ ½ÃÅ´À¸·Î¼ ÀÎÁõÀ» ¿ìȸÇÏ°í ¹é¾÷ ÆÄÀÏ¿¡ ´ëÇÑ ±ÇÇÑÀ» Å»ÃëÇÒ ¼ö ÀÖ½À´Ï´Ù.
2. CVE-2015-2914
Æß¿þ¾î AL1-R201EXP10-L304-W34 ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Securifi Almond ±â±â ¹× Æß¿þ¾î AL2-R088M ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Almond-2015 ±â±â¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ ÃÖÁ¾ Æ÷Æ® ³Ñ¹ö¸¦ »ç¿ëÇÏ¿© ÀÀ´äÀ» ½ºÇªÇÎÇÒ ¼ö ÀÖ½À´Ï´Ù. CVE-2015-7296°ú´Â ¼º°ÝÀÌ ´Ù¸¥ Ãë¾àÁ¡ ÀÔ´Ï´Ù.
3. CVE-2015-2915
Æß¿þ¾î AL1-R201EXP10-L304-W34 ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Securifi Almond ±â±â ¹× Æß¿þ¾î AL2-R088M ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Almond-2015 ±â±â¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ ÀÎÆ®¶ó³Ý¿¡ ÀÖ´Â ÀÎÁõÀ» ·¹¹ö¸®Â¡ ½ÃÄÑ À¥ °ü¸® ±ÇÇÑÀ» Å»ÃëÇÒ ¼ö ÀÖ½À´Ï´Ù.
4. CVE-2015-2916
Æß¿þ¾î AL1-R201EXP10-L304-W34 ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Securifi Almond ±â±â ¹× Æß¿þ¾î AL2-R088M ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Almond-2015 ±â±â¿¡¼ ¹ß°ßµÈ CSRF Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ ÀÓÀÇÀÇ »ç¿ëÀÚ ÀÎÁõÀ» Å»ÃëÇÒ ¼ö ÀÖ½À´Ï´Ù.
5. CVE-2015-2917
Æß¿þ¾î AL1-R201EXP10-L304-W34 ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Securifi Almond ±â±â ¹× Æß¿þ¾î AL2-R088M ÀÌÀü ¹öÀüÀÌ Å¾ÀçµÈ Almond-2015 ±â±â¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ (1 FRAME, 2) IFRAME, 3) OBJECT ¿ä¼Ò°¡ Æ÷ÇԵǾî ÀÖ´Â Á¶ÀÛµÈ À¥ »çÀÌÆ®¸¦ ÅëÇØ Å¬¸¯ÀçÅ·(clickjacking)À» ½ÇÇàÇÒ ¼ö ÀÖ½À´Ï´Ù.
Copyrighted 2015. UBM-Tech. 117153:0515BC
[±¹Á¦ºÎ ÁÖ¼ÒÇü ±âÀÚ(sochu@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(http://www.boannews.com/) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
ÁÖ¼ÒÇü±âÀÚ ±â»çº¸±â
[2024-11-22] .jpg)
.jpg)
.jpg)
.jpg)
.jpg)
