»õ·Î¿î º¸¾ÈÃë¾àÁ¡À» ÀÌ¿ëÇÑ Æ®·ÎÀ̸ñ¸¶°¡ Áß±¹ µîÁö¿¡¼ ¹ß°ßµÇ¾î ¸¶ÀÌÅ©·Î¼ÒÇÁÆ®»çÀÇ ±ä±ÞÇÑ ÆÐÄ¡°¡ ÇÊ¿äÇÑ »óȲÀÌ´Ù.
À̹ø¿¡ ¹ß°ßµÈ Á¾·ù´Â Animated Cursor ÆÄÀÏÀÇ ¡®Zero-Day Attack¡¯À̸ç, ¾ÆÀÌÄÜ ¹× Ä¿¼ Çü½Ä ÆÄÀÏÀÇ Ã³¸®¹®Á¦·Î ÀÎÇÑ ¿ø°ÝÄÚµå ½ÇÇà°¡´É Ãë¾àÁ¡ÀÌ´Ù. Áö±Ý±îÁö URL ÁÖ¼Ò¸¸ ´Ù¸¥ 3°³ÀÇ »ùÇÃÀÌ ÀÔ¼öµÈ »óȲÀÌ´Ù.
ANI ÆÄÀÏÀº RIFF(Resource Interchange File Format) Çü½ÄÀ¸·Î À©µµ¿ì¿¡¼ ¸ÖƼ¹Ìµð¾î °ü·Ã µ¥ÀÌÅÍ µîÀ» ÀúÀåÇϱâ À§ÇØ ¸¸µé¾îÁø ÆÄÀÏ Æ÷¸ËÀ¸·Î AVI, WAV µîÀÇ ¹Ìµð¾î ÆÄÀÏ¿¡¼µµ ´Ù¾çÇÏ°Ô »ç¿ëµÇ°í ÀÖ´Ù.
¢ßÀ×Ä«ÀÎÅÍ³Ý ½ÃÅ¥¸®Æ¼´ëÀÀ¼¾ÅÍ °íµ¿ÈÆÂ÷ÀåÀº ¡°ÇöÀç Áß±¹ ÂÊÀ¸·ÎºÎÅÍ ¹ß°ßµÈ Æ®·ÎÀ̸ñ¸¶ 2Á¾Àº Á¤»óÀûÀ¸·Î ´Ù¿î·Îµå ±â´ÉÀÌ ÀÛµ¿ÇÏ°í ÀÖÀ¸¸ç, Code ±¸Á¶»ó ½±°Ô º¯ÇüµÇ¾î À¯Æ÷µÉ °¡´É¼ºÀÌ ¸Å¿ì ³ôÀº ÆíÀÌ´Ù¡±¸ç ¡°¾ÆÁ÷ ¸¶ÀÌÅ©·Î¼ÒÇÁÆ®»ç·ÎºÎÅÍ º¸¾ÈÆÐÄ¡°¡ ¹ßÇ¥µÇÁö ¾Ê¾Ò±â ¶§¹®¿¡ ´Ù¾çÇÑ ÇüÅÂÀÇ °ø°ÝÀ¸·Î ¹ßÀüµÉ ¼ö ÀÖÀ¸¹Ç·Î ±âÁ¸ÀÇ Zero-Day °ø°Ý ¼ºÇâó·³ ±¹³» »çÀÌÆ®¸¦ ¸ñÇ¥·Î ÇÑ ¿Â¶óÀÎ °ÔÀÓ °èÁ¤ µµ¿ë °ø°Ý°ú °áÇÕµÉ °¡´É¼ºµµ ÃæºÐÇÏ´Ù¡±°í ºÐ¼®Çß´Ù.
¾ÇÀÇÀûÀÎ ANI ÆÄÀÏÀº Ãë¾àÇÑ À¥ »çÀÌÆ®¿Í ÀüÀÚ¿ìÆí ¸Þ½ÃÁö µîÀ» ÅëÇؼ À¯Æ÷µÇ¸ç, ÀÎÅÍ³Ý »ç¿ëÀÚ°¡ ÇØ´ç À¥ ÆäÀÌÁö³ª »çÀÌÆ®¸¦ ¹æ¹® ½Ã Exploit Äڵ尡 Æ÷ÇÔµÈ ANI ÆÄÀÏÀÌ ½ÇÇàµÇ°í, ÄÚµå ³»ºÎ¿¡ Æ÷ÇÔÇÏ°í ÀÖ´Â URL¿¡ ÀÇÇØ ¶Ç ´Ù¸¥ ¾Ç¼ºÄڵ带 »ç¿ëÀÚ ¸ô·¡ ¼³Ä¡ÇÏ°Ô µÇ´Â ¹æ½ÄÀ» ÀÌ¿ëÇÏ°Ô µÈ´Ù.
¿¹½ÃµÈ ȸéÀº ÇöÀç »ó±â 2Á¾°ú ÇÔ²² ¹ß°ßµÈ JPG ÆÄÀÏÀÇ ¶Ç ´Ù¸¥ º¯Á¾À¸·Î¼ Áß±¹ÀÇ Æ¯Á¤ »çÀÌÆ®¿¡¼ À¯Æ÷ ÁßÀΠȸé°ú JPG ±×¸²ÆÄÀÏ·Î À§ÀåÇÏ¿© ½ÇÇàÇϵµ·Ï ÇÑ È¸éÀÇ ¼Ò½ºÀÌ´Ù.
ÇöÀç ¸¶ÀÌÅ©·Î¼ÒÇÁÆ®»ç¿¡¼´Â ´ÙÀ½°ú °°ÀÌ Áö³ 29ÀÏÀÚ·Î Security Advisory¸¦ ¹ßÇ¥ÇÑ »óÅÂÀÌ´Ù.
Microsoft Security Advisory (935423)
Vulnerability in Windows Animated Cursor Handling
www.microsoft.com/technet/security/advisory/935423.mspx
¿µÇâÀ» ¹Þ´Â ¿î¿µÃ¼Á¦´Â ¾Æ·¡¿Í °°ÀÌ ¹ßÇ¥µÆ´Ù.
Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 2
Microsoft Windows XP 64-Bit Edition Version 2003 (Itanium)
Microsoft Windows XP Professional x64 Edition
Microsoft Windows Server 2003
Microsoft Windows Server 2003 for Itanium-based Systems
Microsoft Windows Server 2003 Service Pack 1
Microsoft Windows Server 2003 with SP1 for Itanium-based Systems
Microsoft Windows Server 2003 x64 Edition
Microsoft Windows Vista
¹ß°ßµÈ ANI ÆÄÀÏ·Î ÀÎÇÏ¿© ´Ù¿î·Îµå°¡ ½ÃµµµÇ´Â ÆÄÀÏÀº Áß±¹ÀÇ Æ¯Á¤ »çÀÌÆ®¿¡ Á¸ÀçÇϸç, Viking º¯Á¾ ¹ÙÀÌ·¯½º¿¡ ÀÇÇØ ÆÄÀÏÀÌ °¨¿°µÈ´Ù.
À̵¿Çõ ºÎÀåÀº ¡°ÀÌ Ãë¾àÁ¡À» ¾Ç¿ëÇÑ °ø°ÝÀÚ´Â ¶Ç ´Ù¸¥ ¿ø°ÝÄÚµå(Backdoor) µîÀ» »ç¿ëÇÏ¿© ¿µÇâÀ» ¹Þ´Â ¿î¿µÃ¼Á¦¿¡ ´ëÇÏ¿© ¿Ïº®ÇÑ Á¦¾î ±ÇÇÑÀ» ȹµæÇÒ ¼ö Àֱ⠶§¹®¿¡, ½Å·ÚÇÒ ¼ö ¾ø´Â À¥ »çÀÌÆ®³ª ÀǽɵǴ ÀüÀÚ¿ìÆíÀÌ ¼ö½ÅµÉ °æ¿ì °¢º°ÇÑ ÁÖÀÇ°¡ ¿ä±¸µÇ¸ç, ¸¶ÀÌÅ©·Î¼ÒÇÁÆ®»çÀÇ º¸¾ÈÆÐÄ¡°¡ ¹ßÇ¥µÇ¸é ½Å¼ÓÇÏ°Ô ¼³Ä¡ÇÏ´Â °ÍÀÌ Áß¿äÇÏ´Ù¡±°í ¹àÇû´Ù.
[µ¿¼ºÇý ±âÀÚ(boan2@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>