°øÁö»çÇ×
º¸¾ÈÆÐÄ¡
°áÁ¦¹æ¹ý¾È³»
¼­ºñ½º ÀÌ¿ë¾à°ü
°³ÀÎÁ¤º¸Ãë±Þ¹æÄ§
ÀÚÁÖ¹¯´ÂÁú¹®
±â¼ú°¡À̵å
¹®ÀÇÇϱâ
º¸¾ÈÆÐÄ¡
Á¦ ¸ñ À©µµ¿ì RDP ¿ø°ÝÄÚµå½ÇÇà Ãë¾àÁ¡ º¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í
ÀÛ¼ºÀÚ Çϳª·ÎÈ£½ºÆÃ ( se@hhosting.co.kr ) µî·ÏÁ¤º¸ 2019-05-16 16:24:33 Á¶È¸¼ö 33655
¡à °³¿ä
o À©µµ¿ì ¿ø°Ý Å͹̳ΠÁ¢¼Ó¿¡ »ç¿ëÇÏ´Â ¸¶ÀÌÅ©·Î¼ÒÇÁÆ®ÀÇ RDP(Remote Desktop Protocol)¿¡¼­ ¿ø°ÝÄÚµå½ÇÇà Ãë¾àÁ¡ÀÌ ¹ß°ßµÇ¾î
ÇØ°á ¹æ¾È¿¡ µû¶ó ÃֽŠº¸¾È ¾÷µ¥ÀÌÆ® ±Ç°í
¡Ø ±â¼úÁö¿øÀÌ Á¾·áµÈ Windows XP, Windows Server 2003±îÁö º¸¾È ¾÷µ¥ÀÌÆ®°¡ Á¦°ø

¡à ¼³¸í
o °ø°ÝÀÚ°¡ Ưº°ÇÏ°Ô Á¶ÀÛµÈ RDP ÆÐŶÀ» Àü¼ÛÇÏ¿© ÇÇÇØ ½Ã½ºÅÛ¿¡ ÀÓÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ´Â Ãë¾àÁ¡(CVE-2019-0708)

¡à ¿µÇâ ¹Þ´Â Á¦Ç°
o Windows XP, Windows 7, Windows Server 2003, 2008 ¹× 2008 R2
- Windows XP SP3 x86
- Windows XP Professional x64 Edition SP2
- Windows XP Embedded SP3 x86
- Windows Server 2003 SP2 x86
- Windows Server 2003 x64 Edition SP2
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems Service Pack 1
- Windows Server 2008 for 32-bit Systems Service Pack 2
- Windows Server 2008 for x64-based Systems Service Pack 2
- Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1

¡à ÇØ°á ¹æ¾È
o ¿µÇâ ¹Þ´Â Á¦Ç°ÀÇ ÀÌ¿ëÀÚ´Â À©µµ¿ì ÀÚµ¿/¼öµ¿ ¾÷µ¥ÀÌÆ®¸¦ ÀÌ¿ëÇÏ¿© ÃֽйöÀüÀ¸·Î ¼³Ä¡

- ¼öµ¿ ¼³Ä¡°¡ ÇÊ¿äÇÑ °æ¿ì ¾Æ·¡ Âü°í»çÀÌÆ®(1¹ø)¿¡ Á¢¼ÓÇÏ¿© ¡°Security Updates¡±ÀÇ ÇÏ´Ü Ç¥¿¡ ÀÖ´Â
Download ¸µÅ©¸¦ Ŭ¸¯ÇÏ¿© ¼³Ä¡ Àû¿ë
- À©µµ¿ì XP, 2003 ¼­¹ö »ç¿ëÀÚÀÇ °æ¿ì ¾Æ·¡ Âü°í»çÀÌÆ®(2¹ø)¿¡ Á¢¼ÓÇÏ¿© º¸¾È ¾÷µ¥ÀÌÆ® ÆÄÀÏ ´Ù¿î·Îµå ¹× ¼³Ä¡ Àû¿ë
o Çã¿ëÇÑ °ü¸®ÀÚ¸¸ À©µµ¿ì RDP¸¦ Á¢±ÙÇÒ ¼ö ÀÖµµ·Ï ¹æÈ­º® µîÀ» ÅëÇÑ Á¢±Ù ÅëÁ¦ °­È­

¡à ¹®ÀÇ»çÇ×
o Microsoft °í°´¼¾ÅÍ : 1577-9700
o Çѱ¹ÀÎÅͳÝÁøÈï¿ø ÀÎÅͳÝÄ§ÇØ´ëÀÀ¼¾ÅÍ: ±¹¹ø¾øÀÌ 118

[Âü°í»çÀÌÆ®]
[1] https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708
[2] https://support.microsoft.com/en-us/help/4500705/customer-guidance-for-cve-2019-0708

¡à KISA º¸¾È°øÁö
o https://www.boho.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35028

º¸¾ÈÆÐÄ¡
ÃÑ 174 °Ç
¹øÈ£ Á¦¸ñ µî·ÏÀÏ Á¶È¸¼ö
12 AhnLab V3 ¹é½Å ÇÁ·Î±×·¥ Ãë¾àÁ¡ ÆÐÄ¡ ±Ç°í 2005-09-21 31897
11 [Çϳª·ÎÈ£½ºÆÃ-º¸¾È°øÁö] Win32.zotob Ãë¾àÁ¡ ´ëÀÀ ¸Å´º¾ó ¾È³» 2005-08-18 31057
10 [º¸¾È±ä±Þ»óȲ] Zotob ¿ú ¹× º¯Á¾ È®»ê 2005-08-16 31419
9 [°üÁ¦¼¾ÅÍ]º¸¾È±Ç°í¹®<Áß,ÀÏ »çÀ̹öÀü¿¡ µû¸¥ Ä§ÇØ»ç°í ¿¹¹æ> 2005-08-11 30370
8 JAVA±â¹Ý À¥¼­¹ö ¾÷±×·¹ÀÌµå ½Ç½Ã 2005-07-26 30690
7 MSÀ©µµ¿ì º¸¾ÈÆÐÄ¡ ±Ç°í»çÇ×(2005.6.15) 2005-06-16 31532
6 ȨÆäÀÌÁö °³¹ß º¸¾È °¡ÀÌµå ¹èÆ÷ 2005-05-19 30772
5 [ : º¸¾È±Ç°í¹® ] ȨÆäÀÌÁö ´ë·® º¯Á¶ ¹ß»ý¿¡ µû¸¥ ¡®ÁÖÀÇ¡¯ °æº¸¹ß·É 2005-01-07 32074
4 [±ä±Þ]Á¦·Îº¸µå³ª KorWeblog »ç¿ë ¾÷ü´Â ½Å¼ÓÆÐÄ¡ ¿ä¸Á 2005-01-04 30946
3 [C±Þ] SPYBOT.S ¿ú ¿¹º¸ 2004-01-26 34884
2 MDAC ÇÔ¼öÀÇ ¹öÆÛ ¿À¹ö·±À¸·Î ÀÎÇÑ ÄÚµå ½ÇÇà ¹®Á¦(MS04-003) 2004-01-26 30980
1 [±ä±Þ]Linux Kernel privilege escalation security Ãë¾àÁ¡ °øÁö 2003-12-12 31512
  [1] [2] [3] [4] [5] [6] [7] [8] [9] [10]  
1