½Å¼ÓÇÏ°Ô º¸¾È ¾÷µ¥ÀÌÆ® ÁøÇàÇؾß
[º¸¾È´º½º ±Ç ÁØ ±âÀÚ] UI ¹× ¸®Æ÷Æà Åø °³¹ß¾÷ü ¾×Ƽºê¼ÒÇÁÆ®ÀÇ ´ëÇ¥ÀûÀÎ ÅëÇÕ°³¹ßµµ±¸ÀÎ ¸¶À̺ô´õ(MyBuilder) ¾×ƼºêX ¹× ºä¾î Á¦Ç°ÀÇ ¸í·É¾î»ðÀÔ Ãë¾àÁ¡ÀÌ ¹ß°ßµÅ ½Å¼ÓÇÑ º¸¾È ¾÷µ¥ÀÌÆ®°¡ ¿ä±¸µÇ°í ÀÖ´Ù.
[À̹ÌÁö=¾×Ƽºê¼ÒÇÁÆ® ȨÆäÀÌÁö ĸó]
¾×Ƽºê¼ÒÇÁÆ®¿¡ µû¸£¸é ¸¶À̺ô´õ ActiveX MBV32U.ocx)¿¡¼ °ËÁõÀÌ ¹ÌÈíÇÑ ÇÔ¼ö¸¦ »ç¿ëÇØ ¹ß»ýÇÏ´Â ÀÓÀÇ ¸í·É¾î »ðÀÔ ¹× ½ÇÇà Ãë¾àÁ¡(CVE-2019-12811)°ú ºä¾îÀÇ Æ¯Á¤ ¼³Á¤ÆÄÀÏÀ» Á¶ÀÛÇÒ °æ¿ì ¹ß»ýÇÏ´Â ÀÓÀÇ ¸í·É¾î »ðÀÔ ¹× ½ÇÇà Ãë¾àÁ¡(CVE-2019-12812)ÀÌ ¹ß°ßµÆ´Ù.
¸¶À̺ô´õ´Â º¹ÀâÇÏ°í ´Ù¾çÇÑ »ç¿ëÀÚ ÀÎÅÍÆäÀ̽º¿Í ¸®Æ÷Æà ÇÁ·Î±×·¥À» ¼Õ½±°Ô °³¹ßÇÒ ¼ö ÀÖµµ·Ï Áö¿øÇÏ´Â ÅëÇÕ°³¹ßµµ±¸·Î ¾×Ƽºê¼ÒÇÁÆ®ÀÇ ÁÖ·ÂÁ¦Ç°ÀÌ´Ù.
½É°¢µµ(CVSS)°¡ HIGH(8.8)¿¡ ÇØ´çÇÏ´Â À̹ø Ãë¾àÁ¡¿¡ ¿µÇâÀ» ¹Þ´Â Á¦Ç°Àº MyBuilder 6.2.2019.814 ÀÌÀü ¹öÀüÀ¸·Î, ÇØ´ç ¹öÀüÀ» »ç¿ë ÁßÀÎ ÀÌ¿ëÀÚ´Â ¾×Ƽºê¼ÒÇÁÆ® °í°´¼¾Å͸¦ ÅëÇØ º¸¾ÈÆÐÄ¡¸¦ Àû¿ë¹Þ°Å³ª MyBuilder 6.2.2019.814 ÀÌ»ó ¹öÀüÀ¸·Î ¾÷µ¥ÀÌÆ®°¡ ÇÊ¿äÇÏ´Ù. ±âŸ ÀÚ¼¼ÇÑ »çÇ×Àº ¾×Ƽºê¼ÒÇÁÆ® °í°´¼¾Åͳª Çѱ¹ÀÎÅͳÝÁøÈï¿ø(KISA) ÀÎÅͳÝħÇØ´ëÀÀ¼¾ÅÍ(±¹¹ø¾øÀÌ 118)·Î ¹®ÀÇÇÏ¸é µÈ´Ù.
ÇÑÆí, ÇØ´ç Ãë¾àÁ¡Àº KISA ÀÎÅͳÝħÇØ´ëÀÀ¼¾ÅÍ(KrCERT) ȨÆäÀÌÁö¸¦ ÅëÇØ ¹éÁ¤¿î ¾¾°¡ Á¦°øÇØ ¾Ë·ÁÁ³´Ù.
[±Ç ÁØ ±âÀÚ(editor@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(www.boannews.com) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>