CVE-2015-0726, CVE-2015-0729
[º¸¾È´º½º ÁÖ¼ÒÇü] ÇöÁö ½Ã°¢À¸·Î 5¿ù 16ÀÏ, ¿ì¸®³ª¶ó ½Ã°£À¸·Î´Â ´ë·« 16ÀÏ¿¡¼ 17ÀÏ·Î ³Ñ¾î¿À´Â ¹ã »çÀÌ¿¡ ¹Ì±¹ÀÇ National Vulnerability DatabaseÀ» ÅëÇØ ¹ßÇ¥µÈ Ãë¾àÁ¡µéÀÔ´Ï´Ù.
1. CVE-2014-9204
OPCTest.exe ¹× Rockwell Automation RSLinx Classic 3.73.00 ÀÌÇÏ ¹öÀü¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î ½ºÅà ±â¹Ý(Stack-based)ÀÇ ¹öÆÛ ¿À¹öÇ÷οì Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ CSV ÆÄÀÏÀ» ÅëÇØ ÀÓÀÇÀÇ Äڵ带 ½ÇÇàÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù.
2. CVE-2015-0717
Cisco Unified Communications Manager 10.0(1.10000.12)°¡ ·ÎÄà »ç¿ëÀڵ鿡°Ô ¸í½ÃµÇÁö ¾ÊÀº ¸Å°³º¯¼öÀÇ string ¸í·É¾î¸¦ ÅëÇØ Æ¯±ÇÀ» ºÎ¿©ÇØÁÝ´Ï´Ù. Bug ID CSCut19546¿Í µ¿ÀÏÇÕ´Ï´Ù.
3. CVE-2015-0723
Cisco Wireless LAN Controller (WLC) ±â±â 7.5.x, 7.6.x, 7.6.120 ÀÌÀü ¹öÀüÀÇ ¹«¼± À¥ ÀÎÁõ ¼ºê½Ã½ºÅÛ¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ ÇÑ °³ÀÇ ±â¼ú °ªÀ» ÅëÇØ ¼ºñ½º °ÅºÎ¸¦ ÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù. Bug ID CSCum03269¿Í µ¿ÀÏÇÕ´Ï´Ù.
4. CVE-2015-0726
Cisco Wireless LAN Controller (WLC) ±â±â 7.0.241, 7.1.x, 7.4.x, 7.4.122, 7.5.x, 7.6.x, 7.6.120 ÀÌÀü ¹öÀüÀÇ À¥ ÀÎÁõ ÀÎÅÍÆäÀ̽º¿¡¼ ¹ß°ßµÈ Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ ¸í½ÃµÇÁö ¾ÊÀº ¸Å°³º¯¼ö¸¦ ÅëÇØ ¼ºñ½º °ÅºÎ¸¦ ÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù. Bug ID CSCum65159, CSCum65252¿Í µ¿ÀÏÇÕ´Ï´Ù.
5. CVE-2015-0729
Cisco Secure Access Control Server Solution Engine (ACSE) 5.5(0.1)¹öÀü¿¡¼ ¹ß°ßµÈ XSS Ãë¾àÁ¡À¸·Î °ø°ÝÀÚ°¡ ¿ø°Ý¿¡¼ ÆÄÀÏ»ðÀÔ °ø°ÝÀ» ÅëÇØ ÀÓÀÇÀÇ À¥ ½ºÅ©¸³Æ®³ª HTMLÀ» »ðÀÔÇÒ ¼ö ÀÖ°Ô ÇØÁÝ´Ï´Ù. Bug ID CSCuu11005¿Í µ¿ÀÏÇÕ´Ï´Ù.
Copyrighted 2015. UBM-Tech. 117153:0515BC
[±¹Á¦ºÎ ÁÖ¼ÒÇü ±âÀÚ(sochu@boannews.com)]
<ÀúÀÛ±ÇÀÚ: º¸¾È´º½º(http://www.boannews.com/) ¹«´ÜÀüÀç-Àç¹èÆ÷±ÝÁö>
ÁÖ¼ÒÇü±âÀÚ ±â»çº¸±â
.jpg)
[2022-05-16] 
