.jpg)
.jpg)
CVE-2017-7899, CVE-2017-7901, CVE-2017-7902
CVE-2017-7903, CVE-2017-7905
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 6¿ù 29ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 29ÀÏ¿¡¼ 30ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
.jpg)
1. CVE-2017-7899
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î »ç¿ëÀÚ Å©¸®µ§¼ÈÀÌ HTTP GET ¸Þ¼Òµå¸¦ ÅëÇØ À¥ ¼¹ö·Î Àü¼ÛµÈ´Ù. »ç¿ëÀÚ Å©¸®µ§¼È Å»Ãë°¡ °¡´ÉÇØÁø´Ù.
2. CVE-2017-7901
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î TCP ÃÖÃÊ ½ÃÄö½º ¼ýÀÚµéÀÇ ¹«ÀÛÀ§¼ºÀÌ ÃæºÐÄ¡ ¾Ê´Ù. ±×·¡¼ °ø°ÝÀÚµéÀÌ ÇØ´ç ¼ýÀÚµéÀ» ÃßÃøÇÒ ¼ö°¡ ÀÖ°Ô µÇ°í, À̷νá, TCP ¿¬°áÀ» ¹æÇØÇÏ´Â µîÀÇ ¹æ¹ýÀ¸·Î DoS °ø°ÝÀ» ÇÒ ¼ö ÀÖ°Ô µÈ´Ù.
3. CVE-2017-7902
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î nonce °ªÀ» ÀçÈ°¿ëÇÒ ¼ö ÀÖ°Ô µÇ¾î ÀÖ¾î °ø°ÝÀÚ°¡ ¾Ç¿ëÇÒ ¼ö ÀÖ°Ô µÈ´Ù.
4. CVE-2017-7903
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î ¼ýÀÚ·Î µÈ ºñ¹Ð¹øÈ£ ¼³Á¤½Ã ÇÊ¿äÇÑ ¼ýÀÚÀÇ °³¼ö°¡ ³Ê¹« Àû´Ù.
5. CVE-2017-7905
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î Ciphertext »ý¼º ½Ã ¹«ÀÛÀ§ È¿°ú°¡ Àû¿ëµÇÁö ¾Ê´Â´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
CVE-2017-7903, CVE-2017-7905
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 6¿ù 29ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 29ÀÏ¿¡¼ 30ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
[À̹ÌÁö = iclickart]
1. CVE-2017-7899
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î »ç¿ëÀÚ Å©¸®µ§¼ÈÀÌ HTTP GET ¸Þ¼Òµå¸¦ ÅëÇØ À¥ ¼¹ö·Î Àü¼ÛµÈ´Ù. »ç¿ëÀÚ Å©¸®µ§¼È Å»Ãë°¡ °¡´ÉÇØÁø´Ù.
2. CVE-2017-7901
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î TCP ÃÖÃÊ ½ÃÄö½º ¼ýÀÚµéÀÇ ¹«ÀÛÀ§¼ºÀÌ ÃæºÐÄ¡ ¾Ê´Ù. ±×·¡¼ °ø°ÝÀÚµéÀÌ ÇØ´ç ¼ýÀÚµéÀ» ÃßÃøÇÒ ¼ö°¡ ÀÖ°Ô µÇ°í, À̷νá, TCP ¿¬°áÀ» ¹æÇØÇÏ´Â µîÀÇ ¹æ¹ýÀ¸·Î DoS °ø°ÝÀ» ÇÒ ¼ö ÀÖ°Ô µÈ´Ù.
3. CVE-2017-7902
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î nonce °ªÀ» ÀçÈ°¿ëÇÒ ¼ö ÀÖ°Ô µÇ¾î ÀÖ¾î °ø°ÝÀÚ°¡ ¾Ç¿ëÇÒ ¼ö ÀÖ°Ô µÈ´Ù.
4. CVE-2017-7903
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î ¼ýÀÚ·Î µÈ ºñ¹Ð¹øÈ£ ¼³Á¤½Ã ÇÊ¿äÇÑ ¼ýÀÚÀÇ °³¼ö°¡ ³Ê¹« Àû´Ù.
5. CVE-2017-7905
Rockwell Automation Allen-Bradley MicroLogix 1100ÀÇ ÇÁ·Î±×·¥ °¡´ÉÇÑ ·ÎÁ÷ ÄÁÆ®·Ñ·¯ÀÎ 1763-L16AWA, Series A¿Í B, Version 16.00 ¹× ÀÌÀü ¹öÀü µîÀÇ Ãë¾àÁ¡À¸·Î Ciphertext »ý¼º ½Ã ¹«ÀÛÀ§ È¿°ú°¡ Àû¿ëµÇÁö ¾Ê´Â´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
¹®°¡¿ë±âÀÚ ±â»çº¸±â
[2024-11-01] 
