.jpg)
.jpg)
CVE-2015-2279, CVE-2015-2280, CVE-2017-7541
CVE-2017-8033, CVE-2017-8035
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 7¿ù 24ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 24ÀÏ¿¡¼ 25ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
.jpg)
1. CVE-2015-2279
AirLive BU-2015(Æß¿þ¾î ¹öÀü 1.03.18), BU-3026(Æß¿þ¾î ¹öÀü 1.43), MD-3025(Æß¿þ¾î ¹öÀü 1.81)ÀÇ cgi_test.cgiÀÇ Ãë¾àÁ¡À¸·Î ¿ø°ÝÀÇ °ø°ÝÀÚµéÀÌ shell metacharacters¸¦ ÅëÇØ ÀÓÀÇÀÇ OS ¸í·ÉÀ» ½ÇÇàÇÒ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
2. CVE-2015-2280
AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP ³×Æ®¿öÅ© Ä«¸Þ¶ó(Æß¿þ¾î ¹öÀü FW_AIC1620W_1.1.0-12_20120709_r1192.pck)ÀÇ snwrite.cgiÀÇ Ãë¾àÁ¡À¸·Î ¿ø°Ý¿¡¼ ½ÂÀÎµÈ »ç¿ëÀÚµéÀÌ ÀÓÀÇÀÇ OS ¸í·ÉÀ» ½ÇÇàÇÒ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
3. CVE-2017-7541
Linux Ä¿³Î 4.12.3 ÀÌÀü ¹öÀüÀÇ drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.cÀÇ brcmf_cfg80211_mgmt_txÀÇ Ãë¾àÁ¡À¸·Î ·ÎÄÃÀÇ »ç¿ëÀÚ°¡ Á¶ÀÛµÈ NL80211_CMD_FRAME Netlink ÆÐŶÀ» ÅëÇØ DoS °ø°ÝÀ» ÀÏÀ¸Å³ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
4. CVE-2017-8033
Cloud Foundry Foundation CAPI release ¹öÀü(v1.35.0 ÀÌÀü)°ú cf-release ¹öÀü(v268 ÀÌÀü)ÀÇ Cloud Controller APIÀÇ Ãë¾àÁ¡À¸·Î ±ÇÇÑ »ó½Â °ø°ÝÀÌ °¡´ÉÇÏ°Ô µÈ´Ù. ±ÇÇÑ »ó½Â °ø°Ý ÀÌÈÄ¿¡´Â Cloud Controller VM¿¡ ÀÓÀÇÀÇ ÆÄÀÏÀ» ¾µ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
5. CVE-2017-8035
Cloud Foundry Foundation CAPI release ¹öÀü(v1.35.0 ÀÌÀü°ú v.1.6.0 ÀÌÈÄ)°ú cf-release ¹öÀü(v268 ÀÌÀü°ú v244 ÀÌÈÄ)ÀÇ Cloud Controller APIÀÇ Ãë¾àÁ¡À¸·Î Á¶ÀÛµÈ CAPI ¿äûÀ» ÅëÇØ Æ¯Á¤ ÆÄÀÏ¿¡ Á¢±ÙÇÏ´Â °Ô °¡´ÉÇÏ°Ô µÈ´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
CVE-2017-8033, CVE-2017-8035
[º¸¾È´º½º ¹®°¡¿ë ±âÀÚ] ÇöÁö ½Ã°¢À¸·Î 7¿ù 24ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 24ÀÏ¿¡¼ 25ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÌ´Ù.
[À̹ÌÁö = iclickart]
1. CVE-2015-2279
AirLive BU-2015(Æß¿þ¾î ¹öÀü 1.03.18), BU-3026(Æß¿þ¾î ¹öÀü 1.43), MD-3025(Æß¿þ¾î ¹öÀü 1.81)ÀÇ cgi_test.cgiÀÇ Ãë¾àÁ¡À¸·Î ¿ø°ÝÀÇ °ø°ÝÀÚµéÀÌ shell metacharacters¸¦ ÅëÇØ ÀÓÀÇÀÇ OS ¸í·ÉÀ» ½ÇÇàÇÒ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
2. CVE-2015-2280
AirLink101 SkyIPCam1620W Wireless N MPEG4 3GPP ³×Æ®¿öÅ© Ä«¸Þ¶ó(Æß¿þ¾î ¹öÀü FW_AIC1620W_1.1.0-12_20120709_r1192.pck)ÀÇ snwrite.cgiÀÇ Ãë¾àÁ¡À¸·Î ¿ø°Ý¿¡¼ ½ÂÀÎµÈ »ç¿ëÀÚµéÀÌ ÀÓÀÇÀÇ OS ¸í·ÉÀ» ½ÇÇàÇÒ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
3. CVE-2017-7541
Linux Ä¿³Î 4.12.3 ÀÌÀü ¹öÀüÀÇ drivers/net/wireless/broadcom/brcm80211/brcmfmac/cfg80211.cÀÇ brcmf_cfg80211_mgmt_txÀÇ Ãë¾àÁ¡À¸·Î ·ÎÄÃÀÇ »ç¿ëÀÚ°¡ Á¶ÀÛµÈ NL80211_CMD_FRAME Netlink ÆÐŶÀ» ÅëÇØ DoS °ø°ÝÀ» ÀÏÀ¸Å³ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
4. CVE-2017-8033
Cloud Foundry Foundation CAPI release ¹öÀü(v1.35.0 ÀÌÀü)°ú cf-release ¹öÀü(v268 ÀÌÀü)ÀÇ Cloud Controller APIÀÇ Ãë¾àÁ¡À¸·Î ±ÇÇÑ »ó½Â °ø°ÝÀÌ °¡´ÉÇÏ°Ô µÈ´Ù. ±ÇÇÑ »ó½Â °ø°Ý ÀÌÈÄ¿¡´Â Cloud Controller VM¿¡ ÀÓÀÇÀÇ ÆÄÀÏÀ» ¾µ ¼ö ÀÖµµ·Ï ÇØÁØ´Ù.
5. CVE-2017-8035
Cloud Foundry Foundation CAPI release ¹öÀü(v1.35.0 ÀÌÀü°ú v.1.6.0 ÀÌÈÄ)°ú cf-release ¹öÀü(v268 ÀÌÀü°ú v244 ÀÌÈÄ)ÀÇ Cloud Controller APIÀÇ Ãë¾àÁ¡À¸·Î Á¶ÀÛµÈ CAPI ¿äûÀ» ÅëÇØ Æ¯Á¤ ÆÄÀÏ¿¡ Á¢±ÙÇÏ´Â °Ô °¡´ÉÇÏ°Ô µÈ´Ù.
[±¹Á¦ºÎ ¹®°¡¿ë ±âÀÚ(globoan@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
¹®°¡¿ë±âÀÚ ±â»çº¸±â
[2024-11-01] 
