°øÁö»çÇ×
º¸¾ÈÆÐÄ¡
°áÁ¦¹æ¹ý¾È³»
¼­ºñ½º ÀÌ¿ë¾à°ü
°³ÀÎÁ¤º¸Ãë±Þ¹æÄ§
ÀÚÁÖ¹¯´ÂÁú¹®
±â¼ú°¡À̵å
¹®ÀÇÇϱâ
Á¦ ¸ñ ¾ÖÇà ÄüŸÀÓ Ç÷¹ÀÌ¾î º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í - 2010-12-09
ÀÛ¼ºÀÚ Çϳª·ÎÈ£½ºÆÃ ( hosting@hhosting.co.kr ) µî·ÏÁ¤º¸ 2010-12-09 08:04:00 Á¶È¸¼ö 22126
¡à °³¿ä
o ¾ÖÇÃÞä´Â ¾Ç¼ºÄÚµå ÀüÆÄ¿¡ ¾Ç¿ëµÉ ¼ö ÀÖ´Â ´Ù¼öÀÇ Ãë¾àÁ¡¿¡ ´ëÇÑ º¸¾È¾÷µ¥ÀÌÆ®¸¦ Æ÷ÇÔÇÏ´Â
¾ÖÇà ÄüŸÀÓ Ç÷¹À̾î 7.6.9¸¦ ¹ßÇ¥[1]
o ±¹³» ÄüŸÀÓ Ç÷¹À̾î ÀÌ¿ëÀÚ´Â º¸¾È¾÷µ¥ÀÌÆ®°¡ Æ÷ÇÔµÈ ÃֽйöÀüÀ¸·Î ¾÷µ¥ÀÌÆ®ÇÒ °ÍÀ» ±Ç°í

¡à ¼³¸í
o ¾ÖÇÃÞä´Â ¾Æ·¡¿Í °°Àº Ãë¾àÁ¡¿¡ ´ëÇÑ º¸¾È¾÷µ¥ÀÌÆ®¸¦ Æ÷ÇÔÇÏ´Â ÄüŸÀÓ Ç÷¹À̾î 7.6.9¸¦ ¹ßÇ¥ÇÔ
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ JP2 À̹ÌÁö ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ¹öÆÛ¿À¹öÇ÷ο찡 ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡
°¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3787)[2]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ JP2 À̹ÌÁö ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ÃʱâÈ­ µÇÁö ¾ÊÀº ¸Þ¸ð¸®¿µ¿ª¿¡
Á¢±ÙÇÏ´Â ¹®Á¦°¡ ¹ß»ýÇÏ¿© ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿©
ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡 °¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3788)[3]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ µ¿¿µ»óÆÄÀÏ(.avi)¸¦ ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸® ¼Õ»ó ¹®Á¦°¡ ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡
°¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3789)[4]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ µ¿¿µ»óÆÄÀÏ(.mov)¸¦ ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸® ¼Õ»ó ¹®Á¦°¡ ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡
°¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3790)[5]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ MPEG ÀÎÄÚµù ÆÄÀÏ(.mpg,mp3,mp4µî)À» ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸®
¼Õ»ó ¹®Á¦°¡ ¹ß»ýÇÏ¿© ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿©
ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡 °¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3791, CVE-2010-3792)[6,7]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ Sorenson ÀÎÄÚµù ÆÄÀϸ¦ ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸® ¼Õ»ó ¹®Á¦°¡ ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡 °¨¿°µÉ
¼ö ÀÖÀ½(CVE-2010-3793)[8]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ FlashPix À̹ÌÁö ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸® ¼Õ»ó
¹®Á¦°¡ ¹ß»ýÇÏ¿© ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡
¾Ç¼ºÄڵ尡 °¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3794)[9]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ GIF À̹ÌÁö ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸® ¼Õ»ó ¹®Á¦°¡ ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡
°¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3795)[10]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ PICT À̹ÌÁö ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸® ¼Õ»ó ¹®Á¦°¡ ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡
°¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3800)[11]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ FlashPix À̹ÌÁö ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ÃʱâÈ­ µÇÁö ¾ÊÀº ¸Þ¸ð¸®
¿µ¿ª¿¡ Á¢±ÙÇÏ´Â ¹®Á¦°¡ ¹ß»ýÇÏ¿© ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ
°¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡 °¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3801)[12]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ QTVR ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ¸Þ¸ð¸® ¼Õ»ó ¹®Á¦°¡ ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡
°¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-3802)[13]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ MPEG-4(.mp4)ÆÄÀÏÀ» ó¸®ÇÏ´Â °úÁ¤ Áß ¹öÆÛ ¿À¹öÇÃ·Î¿ì ¹®Á¦°¡
¹ß»ýÇÏ¿© ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡
¾Ç¼ºÄڵ尡 °¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-1508)[14]
- ÄüŸÀÓÀ» ÀÌ¿ëÇÏ¿© ´Ù¸¥ ÄÄÇ»ÅÍ¿¡ ºñÁ¤»óÀûÀÎ Á¢±ÙÀÌ °¡´ÉÇϹǷΠÁß¿äÇÑ Á¤º¸°¡ À¯ÃâµÉ ¼ö
ÀÖÀ½(CVE-2010-0530)[15]
- ¾ÇÀÇÀûÀ¸·Î Á¦ÀÛµÈ µ¿¿µ»óÆÄÀÏ(.mov)·ê ó¸®ÇÏ´Â °úÁ¤ Áß Á¤¼ö ¿À¹öÇ÷ο찡 ¹ß»ýÇÏ¿©
ÀÀ¿ëÇÁ·Î±×·¥ÀÌ ºñÁ¤»ó Á¾·áµÇ°Å³ª ÀÓÀÇÄÚµå½ÇÇàÀÌ °¡´ÉÇÏ¿© ÀÌ¿ëÀÚ PC¿¡ ¾Ç¼ºÄڵ尡
°¨¿°µÉ ¼ö ÀÖÀ½(CVE-2010-4009)[16]

¡à ¾÷µ¥ÀÌÆ® ¹æ¹ý
¨ç ¾ÖÇà ÄüŸÀÓ Ç÷¹ÀÌ¾î ½ÇÇà ÈÄ ¡°µµ¿ò¸» > ±âÁ¸ÀÇ ¼ÒÇÁÆ®¿þ¾î ¾÷µ¥ÀÌÆ®¡± Ŭ¸¯

¨è ´ÙÀ½°ú °°Àº ¾÷µ¥ÀÌÆ® È®ÀÎâÀÌ ¶ß¸é ¡°È®ÀΡ± ¹öưÀ» Ŭ¸¯ÇÏ¿© ¾÷µ¥ÀÌÆ®


¡à ¿ë¾î Á¤¸®
o JP2 À̹ÌÁö ÆÄÀÏ : JPEGÆÄÀÏ(À̹ÌÁö ÆÄÀÏ)À» °³¼±ÇÑ JPEG2000ÀÇ À̹ÌÁö ÆÄÀÏ
o MPEG(Moving Picture ExpertsGroup, µ¿¿µ»ó Àü¹®°¡ ±×·ì) : ºñµð¿À¿Í ¿Àµð¿Àµî ¾ÐÃàÀ» À§ÇÑ
Ç¥Áر԰Ý
o Sorenson : Sorenson Media¶ó°í Çϴ ȸ»ç¿¡¼­ °³¹ßÇÑ ºñµð¿À ÄÚµ¦
o FlashFix À̹ÌÁö ÆÄÀÏ : ºñÆ®¸Ê ÇüÅÂÀÇ ±×¸²ÆÄÀÏ
o PICT À̹ÌÁö ÆÄÀÏ : ¸ÅŲÅä½Ã¿¡¼­ À̹ÌÁö¸¦ ó¸®Çϴ ǥÁØ ÆÄÀÏ Æ÷¸Ë
o QTVR(QuickTime Virtual Reality) : ÄüŸÀÓ¿¡¼­ VR(°¡»óÇö½Ç)ŸÀÔÀÇ À̹ÌÁö¸¦ Áö¿øÇÏ´Â Æ÷¸ä


¡à ±âŸ ¹®ÀÇ»çÇ×
o Çѱ¹ÀÎÅͳÝÁøÈï¿ø ÀÎÅͳÝÄ§ÇØ´ëÀÀ¼¾ÅÍ: ±¹¹ø¾øÀÌ 118

¡à Âü°í»çÀÌÆ®
[1] http://support.apple.com/kb/HT4447
[2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3787
[3] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3788
[4] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3789
[5] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3790
[6] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3791
[7] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3792
[8] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3793
[9] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3794
[10] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3795
[11] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3800
[12] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3801
[13] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-3802
[14] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-1508
[15] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-0530
[16] http://cve.mitre.org/cgi-bin/cvename.cgi?name=2010-4009
ÃÑ 173 °Ç
¹øÈ£ Á¦¸ñ µî·ÏÀÏ Á¶È¸¼ö
173 À©µµ¿ì RDP ¿ø°ÝÄÚµå½ÇÇà Ãë¾àÁ¡ º¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í 2019-05-16 2597
172 WannaCry(¿ö³ÊÅ©¶óÀÌ) ·£¼¶¿þ¾î ´ëÀÀ ¹æ¹ý ¾È³» 2017-05-15 11614
171 OpenSSL ±ä±Þ º¸¾È ¾÷µ¥ÀÌÆ® 2016-03-03 14952
170 À±ÃÊ(Leap Second) °ü·Ã ¹ö±× ³»¿ë ¹× ´ëÀÀ ¹æ¾È ¾È³» 2015-06-26 17505
169 HTTP.sys ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ 2015-04-17 17032
168 ¸®´ª½º Ghost Ãë¾àÁ¡ º¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í 2015-01-29 16206
167 Apache Struts 2 ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í 2013-07-22 24668
166 ±¹³» °ø°³ À¥ °Ô½ÃÆÇ(±×´©º¸µå) º¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í 2011-04-28 29721
165 MS Internet Explorer ½Å±Ô ¿ø°ÝÄÚµå½ÇÇà Ãë¾àÁ¡ ÁÖÀÇ - 2010-12-22 2010-12-22 30694
164 ±¹³» °ø°³ À¥ °Ô½ÃÆÇ(Á¦·Îº¸µå) Ãë¾àÁ¡ ÁÖÀÇ - 2010-12-22 2010-12-22 29427
163 [MS º¸¾È¾÷µ¥ÀÌÆ®]2010³â 12¿ù MS Á¤±â º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í - 2010-12-15 2010-12-15 26355
=> ¾ÖÇà ÄüŸÀÓ Ç÷¹ÀÌ¾î º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í - 2010-12-09 2010-12-09 22126
161 Adobe Reader/Acrobat Ãë¾àÁ¡ º¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í - 2010-11-17 2010-11-17 22268
160 [MS º¸¾È¾÷µ¥ÀÌÆ®]2010³â 11¿ù MS Á¤±â º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í - 2010-11-10 2010-11-10 21340
159 Adobe Flash Player ´ÙÁß Ãë¾àÁ¡ º¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í - 2010-11-05 2010-11-05 21736
158 Mozilla Firefox ¹× Thunderbird º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í - 2010-10-28 2010-10-28 21534
157 Adobe Shockwave Player ½Å±Ô Ãë¾àÁ¡ ÁÖÀÇ - 2010-10-22 2010-10-22 21503
156 [MS º¸¾È¾÷µ¥ÀÌÆ®]2010³â 10¿ù MS Á¤±â º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í - 2010-10-13 2010-10-13 21442
  [1] [2] [3] [4] [5] [6] [7] [8] [9] [10]  
1