½Å¼ÓÈ÷ º¸¾È ¾÷µ¥ÀÌÆ® ÇØ¾ß ¿ø°Ý½ÇÇà ÇÇÇØ ¸·À» ¼ö ÀÖ¾î
MS Office ¹× ÀÎÅÍ³Ý ÀͽºÇ÷η¯¿¡¼ ÇÇÇØ ¹ß»ý °¡´É
MS´Â 14ÀÏ MS Office ¹× ÀÎÅÍ³Ý ÀͽºÇ÷η¯¿¡¼ ¹ß»ýÇÏ´Â ¿ø°ÝÄÚµå ½ÇÇà µîÀÌ °¡´ÉÇÑ 12°Ç(±ä±Þ6, Áß¿ä6)ÀÇ º¸¾ÈÃë¾àÁ¡¿¡ ´ëÇÑ Á¤±â º¸¾È ¾÷µ¥ÀÌÆ®¸¦ ¹ßÇ¥Çß´Ù. ±¹°¡»çÀ̹ö¾ÈÀü¼¾ÅÍ¿Í Çѱ¹Á¤º¸º¸È£ÁøÈï¿øÀº °¢±Þ±â°ü°ú °³ÀεéÀº ÇØ´ç ½Ã½ºÅÛ¿¡ ´ëÇÑ º¸¾È ¾÷µ¥ÀÌÆ®¸¦ Á¶¼ÓÈ÷ ¼³Ä¡ÇØ¾ß ÇÑ´Ù°í ¹àÇû´Ù.
KISA ÀÎÅͳÝħÇØ»ç°í´ëÀÀÁö¿ø¼¾ÅÍ °ü°èÀÚ´Â ¡°À̹ø¿¡ ¹ßÇ¥µÈ 12°ÇÀÇ º¸¾ÈÃë¾àÁ¡¿¡ ´ëÇÑ ¼Ò°³ÀڷḦ ²Ä²ÄÈ÷ »ìÇÇ°í Áö±Ý ¹Ù·Î ¾÷µ¥ÀÌÆ®¸¦ ½Ç½ÃÇØ¾ß ÇÑ´Ù. ±×·¸Áö ¾ÊÀ¸¸é ¿ø°ÝÄÚµå·Î ÀÎÇÑ Á¤º¸À¯Ãâ ÇÇÇظ¦ ´çÇÒ ¼ö ÀÖ´Ù¡±°í °æ°íÇß´Ù. ´ÙÀ½Àº ¹ßÇ¥µÈ 12°ÇÀÇ º¸¾ÈÃë¾àÁ¡ÀÌ´Ù.
¡Þº¸¾È ¾÷µ¥ÀÌÆ®¿¡ Æ÷ÇÔµÈ Ãë¾àÁ¡ ¹× °ü·Ã »çÀÌÆ®
1.Step-by-Step Interactive ÇнÀÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(Áß¿ä, 923723)
Step-by-Step Interactive ÇнÀÀÌ Ã¥°¥ÇÇ ¸µÅ© ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤¿¡ ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇØ °ø°ÝÀÚ¿¡ ÀÇÇØ ¾ÇÀÇÀûÀ¸·Î Á¶ÀÛµÈ Ã¥°¥ÇÇ ¸µÅ© ÆÄÀÏ ½ÇÇà½Ã ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
Step-by-Step Interactive ÇнÀÀ̶õ MS»ç°¡ Á¦°øÇÏ´Â ´ëÈ½Ä ÇнÀ, ÈÆ·Ã CD ŸÀÌƲ¿¡ »ç¿ëµÇ´Â ¿£ÁøÀÌ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-005.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-005.mspx
2. Windows shellÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ±ÇÇÑ »ó½Â ¹®Á¦Á¡(Áß¿ä, 928255)
MS À©µµ¿ì¿¡¼ »õ Çϵå¿þ¾î °Ë»ö ¹× µî·Ï½Ã, Windows shell¿¡ ±ÇÇÑ »ó½Â Ãë¾àÁ¡ÀÌ Á¸ÀçÇØ ÀÎÁõ¹ÞÀº ¾ÇÀÇÀûÀÎ »ç¿ëÀÚ°¡ ½Ã½ºÅÛ¿¡ ´ëÇÑ Àüü Á¦¾î±ÇÇÑ È¹µæÀÌ °¡´ÉÇÏ´Ù.
Windows ShellÀ̶õ Windows desktopÀ̶ó°íµµ Çϸç Windows »ç¿ëÀÚ ÀÎÅÍÆäÀ̽º¿¡ °ü·ÃµÈ ±âº»ÀûÀÎ ÇÁ·¹ÀÓ¿öÅ©¸¦ Á¦°ø ÇÑ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-006.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-006.mspx
3. Windows À̹ÌÁö ÀÎ½Ä ¼ºñ½ºÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ±ÇÇÑ »ó½Â ¹®Á¦Á¡(Áß¿ä, 927802)
Windows XP ¼ºñ½º ÆÑ 2ÀÇ Window À̹ÌÁö ÀÎ½Ä ¼ºñ½º°¡ ÀÀ¿ë ÇÁ·Î±×·¥À» ½ÃÀÛÇÏ´Â ¹æ½Ä¿¡ ±ÇÇÑ »ó½Â Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ¿¡ ÀÇÇØ ½Ã½ºÅÛ Àüü Á¦¾î±ÇÇÑ È¹µæÀÌ °¡´ÉÇÏ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-007.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-007.mspx
4. HTML µµ¿ò¸» ActiveX ÄÁÆ®·ÑÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 928843)
HTML µµ¿ò¸» ActiveX ÄÁÆ®·Ñ¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¶ÀÛµÈ À¥ÆäÀÌÁö¸¦ Á¢¼ÓÅä·Ï À¯µµÇÏ¿© ÇØ´ç ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-008.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-008.mspx
5. Microsoft Data Access ComponentsÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 927779)
ADODB.Connection ActiveX ÄÁÆ®·Ñ¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¶ÀÛµÈ À¥ÆäÀÌÁö¸¦ Á¢¼ÓÅä·Ï À¯µµÇÏ¿© ÇØ´ç ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
ADODB.ConnectionÀ̶õ µ¥ÀÌÅͺ£À̽º ¼¹ö·Î Á¢¼ÓÇÒ ¼ö ÀÖ´Â ¿¬°á ÀÎÅÍÆäÀ̽º¸¦ ¸»ÇÑ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-009.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-009.mspx
6. Microsoft ¸È¿þ¾î ¹æÁö ¿£ÁøÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 932135)
Microsoft ¸È¿þ¾î ¹æÁö ¿£ÁøÀÇ PDF ÆÄÀÏÀ» ±¸¹® ºÐ¼®ÇÏ´Â ¹æ½Ä¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ°¡ ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛÇÑ PDF ÆÄÀÏÀ» ¿¶÷Åä·Ï À¯µµÇÏ¿© ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
PDF(Portable Document Format) ÆÄÀÏÀ̶õ Adobe»ç¿¡¼ Á¦ÀÛÇÑ ¹®¼ÆÄÀÏ Æ÷¸ËÀÌ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-010.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-010.mspx
7. Microsoft OLE ´ëÈ »óÀÚÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(Áß¿ä, 926436)
MS À©µµ¿ì¿¡ Á¦°øµÈ OLE ´ëÈ »óÀÚ ±¸¼º ¿ä¼Ò¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛÇÑ ÅؽºÆ®(RTF) ÆÄÀÏÀÇ OLE °³Ã¼¸¦ ¿¶÷Åä·Ï À¯µµ, ÇØ´ç ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
RTF(Rich Text Format)¶õ ¼·Î ´Ù¸¥ ¿î¿µÃ¼Á¦¿¡¼ »ç¿ëµÇ´Â ¹®¼ÆíÁý±â¿¡¼ ¹®¼ÆÄÀÏ(ÅؽºÆ®)À» ±³È¯Çϱâ À§ÇÑ ÆÄÀÏ Çü½ÄÀÌ´Ù.
¶Ç, OLE ´ëÈ»óÀÚ¶õ Windows¿¡¼ OLE(Object Link and Embed) ¼Ó¼º µî¿¡ ´ëÇÑ Á¤º¸¸¦ º¸¿©ÁÖ´Â ´ÙÀ̾ó·Î±×(´ëÈ»óÀÚ)¸¦ ¸»ÇÑ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-011.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-011.mspx
8. Microsoft MFCÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(Áß¿ä, 924667)
MS À©µµ¿ì, Visual Studio¿Í Á¦°øµÇ´Â MFC ±¸¼º ¿ä¼Ò¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛÇÑ ÅؽºÆ®(RTF) ÆÄÀÏÀÇ OLE °³Ã¼¸¦ ¿¶÷Åä·Ï À¯µµÇÏ¿© ÇØ´ç ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-012.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-012.mspx
9. Microsoft RichEditÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(Áß¿ä, 918118)
MS À©µµ¿ì ¹× Office¿¡ Á¦°øµÈ RichEdit¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛÇÑ ÅؽºÆ®(RTF) ÆÄÀÏÀÇ OLE °³Ã¼¸¦ ¿¶÷Åä·Ï À¯µµÇÏ¿© ÇØ´ç ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
RichEditÀ̶õ, ÀÏ¹Ý ¹®¼ÆíÁý¿ë ÆíÁý⺸´Ù ´Ù¾çÇÑ ±â´ÉÀ» Á¦°øÇÏ´Â ¹®¼ÆíÁýâÀ» ¸»ÇÑ´Ù.
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-013.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-013.mspx
10. Microsoft WordÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 929434)
Microsoft Word¿¡¼ ¹®¼ÆÄÀÏÀ» ó¸®ÇÏ´Â ¹æ½Ä¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛÇÑ Word ¹®¼¸¦ ¿¶÷Åä·Ï À¯µµÇÏ¿© ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
-°ü·Ã Ãë¾àÁ¡
Word Á¶ÀÛµÈ ¹®ÀÚ¿ Ãë¾àÁ¡(CVE-2006-5994)
Word Á¶ÀÛµÈ µ¥ÀÌÅÍ ±¸Á¶ Ãë¾àÁ¡(CVE-2006-6456)
Word Ä«¿îÆ® Ãë¾àÁ¡(CVE-2006-6561)
Word ¸ÅÅ©·Î Ãë¾àÁ¡(CVE-2007-0208)
Word Á¶ÀÛµÈ ±×¸®±â °³Ã¼ Ãë¾àÁ¡(CVE-2007-0209)
Word Á¶ÀÛµÈ ÇÔ¼ö Ãë¾àÁ¡(CVE-2007-0515)
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-014.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-014.mspx
11. Microsoft OfficeÀÇ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°Ý ÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 932554)
PowerPoint¿Í Excel¿¡¼ ¹®¼ÆÄÀÏÀ» ó¸®ÇÏ´Â ¹æ½Ä¿¡ ¿ø°Ý ÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛÇÑ PowerPoint,Excel ¹®¼ÆÄÀÏÀ» ¿¶÷Åä·Ï À¯µµÇÏ¿© ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
-°ü·Ã Ãë¾àÁ¡
PowerPoint Á¶ÀÛµÈ ·¹ÄÚµå ¸Þ¸ð¸® ¼Õ»ó Ãë¾àÁ¡(CVE-2006-3877)
Excel Á¶ÀÛµÈ ·¹ÄÚµå Ãë¾àÁ¡(CVE-2007-0671)
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-015.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-015.mspx
12. Internet Explorer ´©Àû º¸¾È ¾÷µ¥ÀÌÆ®(±ä±Þ, 928090)
Internet Explorer¿¡¼ COM °³Ã¼¸¦ ÀνºÅϽºÈ ÇÏ´Â °úÁ¤°ú FTP ¼¹öÀÇ Æ¯Á¤ ÀÀ´äÀ» ó¸®ÇÏ´Â ¹æ½Ä¿¡ ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ¾ÇÀÇÀûÀ¸·Î Á¶ÀÛµÈ À¥ÆäÀÌÁö¸¦ Á¢¼ÓÅä·Ï À¯µµ, ÇØ´ç ½Ã½ºÅÛ Àå¾ÇÀÌ °¡´ÉÇÏ´Ù.
-°ü·Ã Ãë¾àÁ¡
COM °³Ã¼ ÀνºÅϽºÈ ¸Þ¸ð¸® ¼Õ»ó Ãë¾àÁ¡(CVE-2006-4697)
COM °³Ã¼ ÀνºÅϽºÈ ¸Þ¸ð¸® ¼Õ»ó Ãë¾àÁ¡(CVE-2007-0219)
FTP ¼¹ö ÀÀ´ä ±¸ºÐ ¹®¼® ¸Þ¸ð¸® ¼Õ»ó Ãë¾àÁ¡(CVE-2007-0217)
-°ü·Ã»çÀÌÆ®
http://www.microsoft.com/korea/technet/security/bulletin/MS07-016.mspx
http://www.microsoft.com/technet/security/bulletin/MS07-016.mspx
¡ÞÂü°íÁ¤º¸
Microsoft Update
update.microsoft.com/microsoftupdate/v6/default.aspx?ln=ko
´Ù¿î·Îµå ¼¾ÅÍ
[±æ¹Î±Ç ±âÀÚ(reporter21@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>