|
Ä¿ÇÇÇâÀÌ ³ª´Â *NIX
Ä¿ÇǴнº
½Ã½ºÅÛ/³×Æ®¿÷/º¸¾ÈÀ» ´Ù·ç´Â °÷
|
|
|
|
| ÀÌÀü ÁÖÁ¦ º¸±â :: ´ÙÀ½ ÁÖÁ¦ º¸±â |
| ±Û¾´ÀÌ |
¸Þ½ÃÁö |
truefeel
Ä«Æä °ü¸®ÀÚ
°¡ÀÔ: 2003³â 7¿ù 24ÀÏ
¿Ã¸° ±Û: 1277
À§Ä¡: ´ëÇѹα¹
|
|
| À§·Î |
|
 |
°Ô½ºÆ®
¼Õ´Ô
|
 ¿Ã·ÁÁü: 2003.9.18 ¸ñ, 7:00 pm ÁÖÁ¦: ±×·³ ÀÌÀü ¹öÀü »ç¿ëÀÚµéÀº ¾îÄÉÇؾߵdzª¿ä ? |
 |
|
ftp¿¡ ÀÖ´Â ÆÄÀÏ ´Ù¿î·ÎµåÇؼ ¾îÄÉ ÇؾßÇÏ´ÂÁö °úÁ¤Á» Àû¾îÁÖ¼¼¿ä.
¾ÆÁÖ »ç¼ÒÇÑ °úÁ¤±îÁö ÇÊ¿äÇÕ´Ï´Ù.
À½ µÎ·Æ´Ù. |
|
| À§·Î |
|
|
truefeel
Ä«Æä °ü¸®ÀÚ
°¡ÀÔ: 2003³â 7¿ù 24ÀÏ
¿Ã¸° ±Û: 1277
À§Ä¡: ´ëÇѹα¹
|
| ¿Ã·ÁÁü: 2003.9.18 ¸ñ, 8:26 pm ÁÖÁ¦: Re: »ç¼ÒÇÑ º¸¾È ¹®Á¦ÀÎ µí. ÇØ´ç OS Ȩ¿¡¼ ¾÷µ¥ÀÌÆ®Çϼ¼¿ä. |
|
|
| °Ô½ºÆ® ¾¸: | ftp¿¡ ÀÖ´Â ÆÄÀÏ ´Ù¿î·ÎµåÇؼ ¾îÄÉ ÇؾßÇÏ´ÂÁö °úÁ¤Á» Àû¾îÁÖ¼¼¿ä.
¾ÆÁÖ »ç¼ÒÇÑ °úÁ¤±îÁö ÇÊ¿äÇÕ´Ï´Ù.
À½ µÎ·Æ´Ù. |
±×¸® Å« º¸¾È¹®Á¦´Â¾Æ´Ñ °Í °°½À´Ï´Ù.
CERT µî¿¡µµ ±Ç°í¹®ÀÌ ¿Ã¶ó¿ÀÁö ¾Ê´Â °ÍÀ¸·Î ºÁ¼´Â »ç¼ÒÇÑ °ÍÀ¸·Î »ý°¢À» ÇÏ´Â µí.
Á¤È®È÷ ¿ø°Ý¿¡¼ attackÇÒ ¼öÀÖ´Ù´Â °Íµµ ¾Æ´Ï°í ±×·² °¡´É¼ºÀÌ ÀÖ´Ù´Â °Í °°´Ù¶ó´Â ±ÛÀÔ´Ï´Ù.
sendmail.cf¸¦ ¼öÁ¤Çؼ ·ê¼ÂÀ» º¯°æÇÑ °æ¿ì°¡ ¾Æ´Ï¶ó¸é ´ÙÇàÀ̶ó´Â °Ì´Ï´Ù.
" º¸¾È»óÀÇ ¹®Á¦´Â ÀÖ´Ù. ±×·¯³ª »ç¼ÒÇÏ´Ù. " Áö±Ý±îÁöÀÇ °á·ÐÀÏ µí(?)
-----------------------------------------------------------------------------
·¹µåÇÞÀ» »ç¿ëÇϽŴٸé up2date ½ÇÇàÇؼ ¾÷µ¥ÀÌÆ® Çϼ¼¿ä.
up2date °¡ ¹ºÁö ¸ð¸£½Ã¸é
https://rhn.redhat.com/errata/RHSA-2003-283.html ¿¡¼ ÇØ´ç ¹öÀüÀÇ
sendmail-*.i386.rpm ÆÄÀÏÀ» ¹Þ¾Æ¿À¼¼¿ä.
±×·± ´ÙÀ½ ¹ÞÀº rpm À» rpm -Fvh ¸í·É¾î·Î ¾÷µ¥ÀÌÆ®¸¦ ÇÏ¸é µË´Ï´Ù.
rpm -Fvh sendmail-*
truefeel °¡ 2003.9.19 ±Ý, 1:20 am¿¡ ¼öÁ¤ÇÔ, ÃÑ 1 ¹ø ¼öÁ¤µÊ |
|
| À§·Î |
|
|
truefeel
Ä«Æä °ü¸®ÀÚ
°¡ÀÔ: 2003³â 7¿ù 24ÀÏ
¿Ã¸° ±Û: 1277
À§Ä¡: ´ëÇѹα¹
|
| ¿Ã·ÁÁü: 2003.9.19 ±Ý, 1:19 am ÁÖÁ¦: sendmail¿¡ ´ëÇÑ CERT±Ç°í¹®ÀÌ ³ª¿Ô³×¿ä. |
|
|
CERT¿¡ ±Ç°í¹®ÀÌ ¿Ã¶ó¿Ô³×¿ä.
http://www.cert.org/advisories/CA-2003-25.html
Àü¿¡ ¿Ã¶ó¿Â°Å¶û °ÅÁü ºñ½ÁÇÕ´Ï´Ù.
UNIX/LINUXÀÇ ´ëºÎºÐÀÇ ½Ã½ºÅÛ¿¡¼ sendmailÀ» »ç¿ëÇÏ°í ÀÖ°í
ÁÖ¼Ò ÆĽÌÇÏ´Â Äڵ忡 Ãë¾àÁ¡ÀÌ ÀÖ´Ù´Â °Ì´Ï´Ù. attacker°¡ prescan() ÇÔ¼ö ¹®Á¦·Î ¹öÆÛ ¸ÇµÞºÎºÐ¿¡ ½á¼
±ÇÇÑÀ» ¾òÀ» ¼ö ÀÖ´Ù´Â °Ì´Ï´Ù.
¶ÇÇÑ attacker°¡ ±³¹¦ÇÑ ÇüÅÂÀÇ ¸ÞÀÏ ¸Þ½ÃÁö¸¦ ÅëÇؼ ÀÓÀÇÀÇ Äڵ带 ½ÇÇàÇÒ ¼öµµ ÀÖ´ä´Ï´Ù.
| Àοë: |
I. Description
Sendmail is a widely deployed mail transfer agent (MTA). Many UNIX and Linux systems provide a sendmail implementation that is enabled and running by default. Sendmail contains a vulnerability in its address parsing code. An error in the prescan() function could allow an attacker to write past the end of a buffer, corrupting memory structures. Depending on platform and operating system architecture, the attacker may be able to execute arbitrary code with a specially crafted email message.
This vulnerability is different than the one described in CA-2003-12.
The email attack vector is message-oriented as opposed to connection-oriented. This means that the vulnerability is triggered by the contents of a specially crafted email message rather than by lower-level network traffic. This is important because an MTA that does not contain the vulnerability may pass the malicious message along to other MTAs that may be protected at the network level. In other words, vulnerable sendmail servers on the interior of a network are still at risk, even if the site's border MTA uses software other than sendmail. Also, messages capable of exploiting this vulnerability may pass undetected through packet filters or firewalls.
|
OSº°·Î ¾÷µ¥ÀÌÆ® ¸ñ·ÏÀÌ ÀÖ½À´Ï´Ù. ¸Çµå·¹ÀÌÅ© ¹èÆ÷Æǵµ ÆÐÄ¡°¡ ¿Ã¶ó¿Ô´Ù°í ±×·¯´Âµ¥ ÀÌ ±Ç°í¹®¿¡´Â
¾È³ª¿Í Àֳ׿ä. |
|
| À§·Î |
|
|
|
|
»õ·Î¿î ÁÖÁ¦¸¦ ¿Ã¸± ¼ö ÀÖ½À´Ï´Ù
´ä±ÛÀ» ¿Ã¸± ¼ö ÀÖ½À´Ï´Ù
ÁÖÁ¦¸¦ ¼öÁ¤ÇÒ ¼ö ¾ø½À´Ï´Ù
¿Ã¸° ±ÛÀ» »èÁ¦ÇÒ ¼ö ¾ø½À´Ï´Ù
ÅõÇ¥¸¦ ÇÒ ¼ö ¾ø½À´Ï´Ù
|
Powered by phpBB © 2001, 2005 phpBB Group
|
FAQ
°Ë»ö
¸â¹ö¸®½ºÆ®
»ç¿ëÀÚ ±×·ì
»ç¿ëÀÚ µî·ÏÇϱâ
°³ÀÎ Á¤º¸
ºñ°ø°³ ¸Þ½ÃÁö¸¦ È®ÀÎÇÏ·Á¸é ·Î±×ÀÎÇϽʽÿÀ
·Î±×ÀÎ
°¡ÀÔ¾øÀÌ ´©±¸³ª ±ÛÀ» ¾µ ¼ö ÀÖ½À´Ï´Ù. °øÁö»çÇ׿¡ ´ëÇÑ ´ñ±Û±îÁöµµ..
BBS >>
¼³Ä¡, ¿î¿µ Q&A |
³×Æ®¿÷, º¸¾È Q&A |
ÀÏ¹Ý Q&A ||
Á¤º¸¸¶´ç |
AWS ||
ÀÚÀ¯°Ô½ÃÆÇ |
±¸Àα¸Á÷ ||
°øÁö»çÇ× |
ÀÇ°ßÁ¦½Ã
