½Ã½ºÅÛ°ü¸®ÀÚÀÇ ½°ÅÍ Ä¿ÇǴнº Ä¿ÇÇÇâÀÌ ³ª´Â *NIX
Ä¿ÇǴнº
½Ã½ºÅÛ/³×Æ®¿÷/º¸¾ÈÀ» ´Ù·ç´Â °÷
 FAQFAQ   °Ë»ö°Ë»ö   ¸â¹ö¸®½ºÆ®¸â¹ö¸®½ºÆ®   »ç¿ëÀÚ ±×·ì»ç¿ëÀÚ ±×·ì   »ç¿ëÀÚ µî·ÏÇϱâ»ç¿ëÀÚ µî·ÏÇϱâ 
 °³ÀÎ Á¤º¸°³ÀÎ Á¤º¸   ºñ°ø°³ ¸Þ½ÃÁö¸¦ È®ÀÎÇÏ·Á¸é ·Î±×ÀÎÇϽʽÿÀºñ°ø°³ ¸Þ½ÃÁö¸¦ È®ÀÎÇÏ·Á¸é ·Î±×ÀÎÇϽʽÿÀ   ·Î±×Àηα×ÀΠ

°¡ÀÔ¾øÀÌ ´©±¸³ª ±ÛÀ» ¾µ ¼ö ÀÖ½À´Ï´Ù. °øÁö»çÇ׿¡ ´ëÇÑ ´ñ±Û±îÁöµµ..




BBS >> ¼³Ä¡, ¿î¿µ Q&A | ³×Æ®¿÷, º¸¾È Q&A | ÀÏ¹Ý Q&A || Á¤º¸¸¶´ç | AWS || ÀÚÀ¯°Ô½ÃÆÇ | ±¸Àα¸Á÷ || °øÁö»çÇ× | ÀÇ°ßÁ¦½Ã
WindowsÀÇ RPCSS Service ¹öÆÛ ¿À¹ö·± ¹®Á¦. ¾÷µ¥ÀÌÆ® ÇÊ

 
±Û ¾²±â   ´äº¯ ´Þ±â    Ä¿ÇǴнº, ½Ã½ºÅÛ ¿£Áö´Ï¾îÀÇ ½°ÅÍ °Ô½ÃÆÇ À妽º -> *NIX / IT Á¤º¸
ÀÌÀü ÁÖÁ¦ º¸±â :: ´ÙÀ½ ÁÖÁ¦ º¸±â  
±Û¾´ÀÌ ¸Þ½ÃÁö
truefeel
Ä«Æä °ü¸®ÀÚ


°¡ÀÔ: 2003³â 7¿ù 24ÀÏ
¿Ã¸° ±Û: 1277
À§Ä¡: ´ëÇѹα¹

¿Ã¸®±â¿Ã·ÁÁü: 2003.9.16 È­, 3:07 pm    ÁÖÁ¦: WindowsÀÇ RPCSS Service ¹öÆÛ ¿À¹ö·± ¹®Á¦. ¾÷µ¥ÀÌÆ® ÇÊ Àοë°ú ÇÔ²² ´äº¯

Ãâó : CERTCC-KR, http://www.certcc.or.kr/eWAS_NOTICE/KA2003-066.htm
À©µµ¿ìÁî »ç¿ëÀÚ´Â »¡¸® ¾÷µ¥ÀÌÆ® Çϼ¼¿ä.

---------------------------------------------------------------------

* Ãâ ó http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-039.asp
* ÀÛ ¼º ÀÚ °øÀç¼ø
* Á¦ ¸ñ [C±Þ] RPCSS Service ÀÇ ¹öÆÛ ¿À¹ö·±À¸·Î ÀÎÇÑ ÄÚµå ½ÇÇà ¹®Á¦

* ÇØ´ç½Ã½ºÅÛ

Windows XP Professional
Windows 2003 Server
Windows 2000 Professional
window nt/2000 server

* ¿µ Çâ

ÀÌ Ãë¾àÁ¡À¸·Î ÀÎÇÏ¿© °ø°ÝÀÚ°¡ ¿øÇÏ´Â ÀÓÀÇÀÇ ÀÛ¾÷À» ¼öÇàÇÒ ¼ö ÀÖ´Ù.

* ¼³ ¸í

DCOM È°¼ºÈ­¿¡ ´ëÇÑ RPC ¸Þ½ÃÁö¸¦ ó¸®ÇÏ´Â RPCSS ¼­ºñ½º ºÎºÐ¿¡¼­ ¼¼ °¡Áö Ãë¾àÁ¡ÀÌ È®ÀεǾú´Ù.

Ãë¾àÁ¡Àº Windows RPC ¼­ºñ½º°¡ À߸øµÈ ¸Þ¼¼Áö¸¦ ó¸®ÇÏ´Â ¹æ½Ä¿¡ ¹®Á¦°¡ ÀÖ¾î ¹ß»ýÇϸç, ÀÌ °áÇÔÀº DCOM(Distributed Component Object Model) ÀÎÅÍÆäÀ̽º¿¡ ¿µÇâÀ» ÁØ´Ù.

DCOMÀÇ µ¿ÀÛ¿¡ ÇÊ¿äÇÑ RPC message¸¦ ó¸®ÇÏ´Â RPCSS Service¿¡ ´ëÇØ °ø°ÝÀÚ´Â À߸øµÈ RPC ¸Þ½ÃÁö¸¦ º¸³¿À¸·Î½á ÀÓÀÇÀÇ Äڵ带 ½ÇÇàÇÏ¿© ½Ã½ºÅÛÀÇ RPC ¼­ºñ½º¿¡ Àå¾Ö¸¦ ÀÏÀ¸Å³ ¼ö ÀÖ°í, ±× °á°ú·Î DOS°ø°ÝÀÌ ÀϾ ¼ö ÀÖ´Ù. Local System Privileges¸¦ °¡Áø »óÅ¿¡¼­ Äڵ带 ½ÇÇàÇÏ°Ô µÇ¸é °ø°ÝÀÚ´Â system exploitÀÌ °¡´ÉÇØÁ®, ÇÁ·Î±×·¥À» ¼³Ä¡Çϰųª µ¥ÀÌ
ÅÍ ¼öÁ¤ ¹× »èÁ¦µîÀÌ °¡´ÉÇØ Áö°í, ¸ðµç ÀÛ¾÷À» ÇÒ ¼ö ÀÖ´Â °èÁ¤À» »ý¼º ÇÒ ¼öµµ ÀÖ´Ù.

* ÇØ °á Ã¥

°ø°ÝÀ¸·ÎºÎÅÍ »ç¿ëÀÚ ½Ã½ºÅÛÀ» º¸È£Çϱâ À§ÇØ ¾Æ·¡ÀÇ ¹æ¹ýÀ» »ç¿ëÇÑ´Ù.

1. RPC ¼­ºñ½º°¡ ²À ÇÊ¿äÇÑ °æ¿ì°¡ ¾Æ´Ñ °æ¿ì

¨ç ¹æÈ­º®¿¡¼­ 135¹ø Æ÷Æ®¸¦ Â÷´Ü

135¹ø Æ÷Æ®´Â ¿ø°Ý ÄÄÇ»ÅÍ¿¡ RPC¸¦ ¿¬°áÇÏ´Â µ¥ »ç¿ëµÇ¸ç, ¹æÈ­º®¿¡¼­ 135¹ø Æ÷Æ®¸¦ Â÷´ÜÇϸé ÀÌ Ãë¾àÁ¡À» ¾Ç¿ëÇÏ¿© ¹æÈ­º® µÚÀÇ ½Ã½ºÅÛÀÌ °ø°Ý ¹Þ´Â °ÍÀ» ¿¹¹æÇÒ ¼ö ÀÖ´Ù.

¨è ÀÎÅÍ³Ý ¿¬°á ¹æÈ­º®

ÀÎÅÍ³Ý ¿¬°áÀ» º¸È£Çϱâ À§ÇØ Windows XP ¶Ç´Â Windows Server 2003¿¡¼­ ÀÎÅÍ³Ý ¿¬°á ¹æÈ­º®À» »ç¿ëÇÏ´Â °æ¿ì ÀÎÅͳÝÀÇ Àιٿîµå RPC Æ®·¡ÇÈÀÌ ±âº»ÀûÀ¸·Î Â÷´ÜµÈ´Ù.

¨é ¿µÇâ ¹Þ´Â ¸ðµç ½Ã½ºÅÛ¿¡¼­ DCOM ±â´ÉÀ» ÇØÁ¦ÇÑ´Ù.

- DCOMÀ» ¼öµ¿À¸·Î ¼³Á¤Çϰųª ÇØÁ¦ÇÏ´Â ³»¿ëÀº ¾Æ·¡ÀÇ »çÀÌÆ®¸¦ Âü°íÇÑ´Ù.

http://www.microsoft.com/korea/technet/security/bulletin/MS03-026.asp

- RPC¿¡ ÀÇÇØ »ç¿ëµÇ¾îÁö´Â Æ÷Æ®°ü·Ã Á¤º¸´Â ¾Æ·¡ »çÀÌÆ®¸¦ ÂüÁ¶ÇÑ´Ù.

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/prodtechnol/windows2000serv/reskit/tcpip/part4/tcpappc.asp

2. RPC¼­ºñ½º°¡ ÇÊ¿äÇÑ °æ¿ì º¸¾È ÆÐÄ¡µÈ ¹öÁ¯À» ´Ù¿î·Îµå ¹Þ¾Æ ¼³Ä¡ÇÑ´Ù.

Windows NT Workstation 4.0

http://www.microsoft.com/downloads/details.aspx?FamilyId=7EABAD74-9CA9-48F4-8DB5-CF8C188879DA&displaylang=ko

Windows NT Server 4.0

http://www.microsoft.com/downloads/details.aspx?FamilyId=71B6135C-F957-4702-B376-2DACCE773DC0&displaylang=ko

Windows NT Server 4.0, Terminal Server Edition

http://www.microsoft.com/downloads/details.aspx?FamilyId=677229F8-FBBF-4FF4-A2E9-506D17BB883F&displaylang=en

Windows 2000

http://www.microsoft.com/downloads/details.aspx?FamilyId=F4F66D56-E7CE-44C3-8B94-817EA8485DD1&displaylang=ko

Windows XP

http://www.microsoft.com/downloads/details.aspx?FamilyId=5FA055AE-A1BA-4D4A-B424-95D32CFC8CBA&displaylang=ko

Windows XP 64 bit Edition

http://www.microsoft.com/downloads/details.aspx?FamilyId=50E4FB51-4E15-4A34-9DC3-7053EC206D65&displaylang=en

Windows XP 64 bit Edition Version 2003

http://www.microsoft.com/downloads/details.aspx?FamilyId=80AB25B3-E387-441F-9B6D-84106F66059B&displaylang=en

Windows Server 2003

http://www.microsoft.com/downloads/details.aspx?FamilyId=51184D09-4F7E-4F7B-87A4-C208E9BA4787&displaylang=ko

Windows Server 2003 64 bit Edition

http://www.microsoft.com/downloads/details.aspx?FamilyId=80AB25B3-E387-441F-9B6D-84106F66059B&displaylang=en

ÂüÁ¶»çÀÌÆ®

http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-039.asp
http://www.microsoft.com/korea/technet/security/bulletin/MS03-039.asp

* ÂüÁ¶»çÀÌÆ®

MS ÇÑ±Û º¸¾È±Ç°í¹®
http://www.microsoft.com/korea/technet/security/bulletin/MS03-039.asp
MS ¿µ¹® º¸¾È±Ç°í¹®
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS03-039.asp
À§·Î
»ç¿ëÀÚ Á¤º¸ º¸±â ºñ¹Ð ¸Þ½ÃÁö º¸³»±â ±Û ¿Ã¸°ÀÌÀÇ À¥»çÀÌÆ® ¹æ¹®
ÀÌÀü ±Û Ç¥½Ã:   
±Û ¾²±â   ´äº¯ ´Þ±â    Ä¿ÇǴнº, ½Ã½ºÅÛ ¿£Áö´Ï¾îÀÇ ½°ÅÍ °Ô½ÃÆÇ À妽º -> *NIX / IT Á¤º¸ ½Ã°£´ë: GMT + 9 ½Ã°£(Çѱ¹)
ÆäÀÌÁö 1 Áß 1

 
°Ç³Ê¶Ù±â:  
»õ·Î¿î ÁÖÁ¦¸¦ ¿Ã¸± ¼ö ÀÖ½À´Ï´Ù
´ä±ÛÀ» ¿Ã¸± ¼ö ÀÖ½À´Ï´Ù
ÁÖÁ¦¸¦ ¼öÁ¤ÇÒ ¼ö ¾ø½À´Ï´Ù
¿Ã¸° ±ÛÀ» »èÁ¦ÇÒ ¼ö ¾ø½À´Ï´Ù
ÅõÇ¥¸¦ ÇÒ ¼ö ¾ø½À´Ï´Ù


Powered by phpBB © 2001, 2005 phpBB Group