CVE-2016-1115, CVE-2016-4117
[º¸¾È´º½º ¹®°¡¿ë] ÇöÁö ½Ã°¢À¸·Î 5¿ù 10ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 10ÀÏ¿¡¼ 11ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
1. CVE-2016-0198
MS Word 2007 SP3, Office 2010 SP2, Word 2010 SP2, Word 2013 SP1, Word 2013 RT SP1, Word 2016, Word for Mac 2011, Word 2016 for Mac, Office Compatibility Pack SP3, Word Viewer¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î ¿ø°ÝÀÇ °ø°ÝÀÚ°¡ Á¶ÀÛµÈ ¿ÀÇǽº ¹®¼¸¦ ÅëÇØ ÀÓÀÇÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ°Ô µÈ´Ù.
2. CVE-2016-1113
Adobe ColdFusion Update 19 ÀÌÀü 10 ¹öÀü, Update 8 ÀÌÀü 11 ¹öÀü, Update 1 ÀÌÀü 2016 ¹öÀü¿¡ ÀÖ´Â Ãë¾àÁ¡À¸·Î ¿ø°ÝÀÇ °ø°ÝÀÚ°¡ ÀÓÀÇÀÇ À¥ ½ºÅ©¸³Æ®³ª HTMLÀ» ÁÖÀÔÇÒ ¼ö ÀÖ°Ô µÈ´Ù.
3. CVE-2016-1114
Adobe ColdFusion Update 19 ÀÌÀü 10 ¹öÀü, Update 8 ÀÌÀü 11 ¹öÀü, Update 1 ÀÌÀü 2016 ¹öÀü¿¡ ÀÖ´Â Ãë¾àÁ¡À¸·Î ¿ø°ÝÀÇ °ø°ÝÀÚ°¡ ÀÓÀÇÀÇ ¸í·ÉÀ» ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇØÁØ´Ù. Apache Commons Collections ¶óÀ̺귯¸®¿Í ¿¬°üÀÌ ÀÖ´Ù.
4. CVE-2016-1115
Adobe ColdFusion Update 19 ÀÌÀü 10 ¹öÀü, Update 8 ÀÌÀü 11 ¹öÀü, Update 1 ÀÌÀü 2016 ¹öÀü¿¡ ÀÖ´Â Ãë¾àÁ¡À¸·Î X.509 ÀÎÁõ¼µéÀÇ À̸§ °ª Çʵ忡¼ wildcardµéÀ» À߸ø ó¸®ÇÑ´Ù. À̷νá Áß°£ÀÚ °ø°ÝÀÌ °¡´ÉÇØÁø´Ù.
5. CVE-2016-4117
Adobe Flash Player 21.0.0.226 Æ÷ÇÔ ÀÌÀü ¹öÀü¿¡ ÀÖ´Â Ãë¾àÁ¡À¸·Î ¿ø°ÝÀÇ °ø°ÝÀÚ°¡ ÀÓÀÇÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇØÁØ´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
- ±¹³» ÃÖ´ë ±Ô¸ðÀÇ °³ÀÎÁ¤º¸º¸È£ ÄÁÆÛ·±½º PIS FAIR 2016 - 6¿ù 9ÀÏ(¸ñ)~10ÀÏ(±Ý) °³ÃÖ- °ø°ø¡¤±ÝÀ¶¡¤¹Î°£ CPO, °³ÀÎÁ¤º¸Ã³¸®ÀÚ, º¸¾È´ã´çÀÚ µî 4,000¿©¸í Âü¼®
- °ø¹«¿ø»ó½ÃÇнÀ, CPPG, CISSP, CISA, ISMSµî °ü·Ã ±³À°À̼ö(ÃÖ´ë 16½Ã°£) ÀÎÁ¤
- CPO, °³ÀÎÁ¤º¸Ã³¸®ÀÚ, º¸¾È´ã´çÀÚ µî »çÀü ¹«·á Âü°üµî·Ï(www.pisfair.org/2016/)