³ë¹«Çö ´ëÅë·É ¹è³Ê
  ±è¼ºÅÂÀÇ Tech Tips(Linux, PHP, Apache, DBMS, Mobile)
  http://www.supersky.pe.kr  
¾È³çÇϽʴϱî? ±è¼ºÅÂÀÔ´Ï´Ù.
Linux, Apache, PHP, Mysql, Mobile °ü·Ã Tech Tips Á¤º¸¸¦ Á¦°øÇÕ´Ï´Ù.
 
<<   2009 Apr   >>
S M T W T F S
2930311234
567891011
12131415161718
19202122232425
262728293012
1750139 319
  
  + Article List  :  2009³â 4¿ù (1)
2009/04/15     Microsoft º¸¾È¾÷µ¥ÀÌÆ®(MS09-009 ~ MS09-016)  (119)

DNS Powered by DNSEver.com
  ++ Microsoft º¸¾È¾÷µ¥ÀÌÆ®(MS09-009 ~ MS09-016)  -  2009/04/15 10:52
Á¦¸ñ ¾øÀ½
¡á °³ ¿ä

MSÞä´Â 4¿ù 15ÀÏ MS À©µµ¿ì ¹× Office µî¿¡¼­ ½Ã½ºÅÛ Àå¾Ç µî ÇØÅ·¿¡ ¾Ç¿ë °¡´ÉÇÑ º¸¾ÈÃë¾àÁ¡ 8°Ç(±ä±Þ 5, Áß¿ä 2, º¸Åë 1)À» ¹ßÇ¥ÇÏ¿´´Â ¹Ù, °¢±Þ±â°üÀº ÇØ´ç ½Ã½ºÅÛ¿¡ ´ëÇÑ MSÞäÀÇ º¸¾È ¾÷µ¥ÀÌÆ®¸¦ Á¶¼ÓÈ÷ ¼³Ä¡ÇϽñ⠹ٶø´Ï´Ù.

* ƯÈ÷ À̹ø¿¡´Â Áö³­ÇØ 12¿ù ¹× ±Ý³â 2¿ù¿¡ °ø°³µÇ¾î ÇØÅ·¿¡ ¾Ç¿ëÁßÀÌ´ø MS ¿¢¼¿, ¿öµåÆеåÀÇ Ãë¾àÁ¡¿¡ ´ëÇÑ ¾÷µ¥ÀÌÆ®°¡ Æ÷ÇԵǾî ÀÖÀ¸¹Ç·Î ½Å¼ÓÇÑ ÆÐÄ¡ Àû¿ëÀ» ±Ç°íÇÕ´Ï´Ù.
* ÇÑÆí, Áö³­ 4.3 °ø°³µÈ MS ÆÄ¿öÆ÷ÀÎÆ®ÀÇ Ãë¾àÁ¡¿¡ ´ëÇÑ ¾÷µ¥ÀÌÆ®´Â Æ÷ÇÔµÇÁö ¾ÊÀ½¿¡ µû¶ó "¿ÜºÎ·ÎºÎÅÍ ÀÔ¼öÇÑ ÆÄ¿öÆ÷ÀÎÆ® ÆÄÀÏ¿¡ ´ëÇØ ÀÛ¼ºÀÚ È®ÀÎÈÄ¿¡ ¿­¶÷" µî À¯ÀÇÇÏ¿© Áֽñ⠹ٶø´Ï´Ù.



¡á º¸¾È ¾÷µ¥ÀÌÆ®¿¡ Æ÷ÇÔµÈ Ãë¾àÁ¡ ¹× °ü·Ã »çÀÌÆ®

1
. MS ¿¢¼¿ Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°ÝÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 968557)

o ¼³ ¸í
MS ¿¢¼¿¿¡¼­ ¿¢¼¿ ¹®¼­¸¦ ¿­¶÷ÇÏ´Â °úÁ¤¿¡ ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â Á¶ÀÛµÈ ¿¢¼¿ ÆÄÀÏÀÌ Æ÷ÇÔµÈ ¾ÇÀÇÀûÀÎ À¥ÆäÀÌÁö¸¦ ±¸ÃàÇÑ ÈÄ »ç¿ëÀÚÀÇ ¹æ¹®À» À¯µµÇϰųª À̸ÞÀÏ Ã·ºÎÆÄÀÏÀ» ¿­¾îº¸µµ·Ï À¯µµÇÏ¿© Ãë¾à½Ã½ºÅÛ¿¡ ´ëÇØ ¿ÏÀüÇÑ ±ÇÇÑ È¹µæÀÌ °¡´ÉÇÏ´Ù.

o °ü·Ã Ãë¾àÁ¡
  - Memory Corruption Vulnerability(CVE-2009-0100)
  - Memory Corruption Vulnerability(CVE-2009-0238)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Office 2000 SP3
  - Microsoft Office XP SP3
  - Microsoft Office 2003 SP3
  - 2007 Microsoft Office System SP1
  - Microsoft Office Excel Viewer
  - Microsoft Office Excel Viewer 2003 SP3
  - Microsoft Office Compatibility Pack for Word, Excel, PowerPoint 2007 File Formats SP1
  - Microsoft Office 2004 for Mac
  - Microsoft Office 2008 for Mac

o ¿µÇâ¹ÞÁö ¾Ê´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Works 8.5, 9.0
  - Microsoft Works Suite 2005, 2006
  - OpenXML File Format Converter for Mac
  - Microsoft Office File Converter Pack
  - Microsoft Office SharePoint Server 2003 SP3
  - Microsoft Office SharePoint Server 2007, SP1 (32-bit editions)
  - Microsoft Office SharePoint Server 2007, SP1 (64-bit editions)

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/Bulletin/MS09-009.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-009.mspx

2. ¿öµåÆÐµå ¹× MS Office ÅؽºÆ® º¯È¯±â Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°ÝÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 960477)

o ¼³ ¸í
¿öµåÆÐµå ¹× MS Office¿¡¼­ ¿öµå ÆÄÀÏ ¿­¶÷½Ã ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â Á¶ÀÛµÈ ¿öµå ÆÄÀÏÀÌ Æ÷ÇÔµÈ ¾ÇÀÇÀûÀÎ À¥ÆäÀÌÁö¸¦ ±¸ÃàÇÑ ÈÄ »ç¿ëÀÚÀÇ ¹æ¹®À» À¯µµÇϰųª À̸ÞÀÏ Ã·ºÎÆÄÀÏÀ» ¿­¾îº¸µµ·Ï À¯µµÇÏ¿© Ãë¾à½Ã½ºÅÛ¿¡ ´ëÇØ ¿ÏÀüÇÑ ±ÇÇÑ È¹µæÀÌ °¡´ÉÇÏ´Ù.

o °ü·Ã Ãë¾àÁ¡
  - WordPad and Office Text Converter Memory Corruption Vulnerability(CVE-2009-0087)
  - WordPad Word 97 Text Converter Stack Overflow Vulnerability(CVE-2008-4841)
  - Word 2000 WordPerfect 6.x Converter Stack Overflow Vulnerability(CVE-2009-0088)
  - WordPad Word97 Text Converter Stack Overflow Vulnerability(CVE-2009-0235)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - MMicrosoft Windows 2000 SP4
  - Microsoft Windows XP SP2, SP3
  - Microsoft Windows XP Professional x64 Edition, SP2
  - Microsoft Windows Server 2003 SP1, SP2
  - Microsoft Windows Server 2003 x64 Edition, SP2
  - Microsoft Windows Server 2003 with SP1, SP2 for Itanium-based Systems
  - Microsoft Office 2000 SP3
  - Microsoft Office XP SP3
  - Microsoft Office Converter Pack

o ¿µÇâ¹ÞÁö ¾Ê´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Windows Vista, SP1
  - Microsoft Windows Vista x64 Edition, SP1
  - Microsoft Windows Server 2008 for 32-bit Systems
  - Microsoft Windows Server 2008 for x64-based Systems
  - Microsoft Windows Server 2008 for Itanium-based Systems
  - Microsoft Office Word 2003 SP3
  - Microsoft Office Word 2007 SP1
  - Microsoft Office Word Viewer
  - Microsoft Office Word Viewer 2003 SP3
  - Microsoft Office Compatibility Pack for Word, Excel, PowerPoint 2007 File Formats SP1
  - Microsoft Office 2004 for Mac
  - Microsoft Office 2008 for Mac
  - OpenXML File Format Converter for Mac
  - Microsoft Works 8.0, 8.5, 9.0
  - Microsoft Works Suite 2006

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/bulletin/MS09-010.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-010.mspx

3. Microsoft DirectShow Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°ÝÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 961373)

o ¼³ ¸í
MS DirectShow¿¡¼­ MJPEG ÆÄÀÏ ¿­¶÷½Ã ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â Á¶ÀÛµÈ MJPEG ÆÄÀÏÀÌ Æ÷ÇÔµÈ ¾ÇÀÇÀûÀÎ À¥ÆäÀÌÁö¸¦ ±¸ÃàÇÑ ÈÄ »ç¿ëÀÚÀÇ ¹æ¹®À» À¯µµÇϰųª À̸ÞÀÏ Ã·ºÎÆÄÀÏÀ» ¿­¾îº¸µµ·Ï À¯µµÇÏ¿© Ãë¾à½Ã½ºÅÛ¿¡ ´ëÇØ ¿ÏÀüÇÑ ±ÇÇÑ È¹µæÀÌ °¡´ÉÇÏ´Ù.

* MJPEG(Motion JPEG) : ½ºÆ¿ »çÁø(JPEG À̹ÌÁö)À» ¾ÐÃà½ÃÄÑ µ¿¿µ»óÀ» ¸¸µå´Âµ¥ »ç¿ëÇÏ´Â Æ÷¸Ë


o °ü·Ã Ãë¾àÁ¡
  - MJPEG Decompression Vulnerability(CVE-2009-0084)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - DirectX 8.1, 9.0 on Windows 2000 SP4
  - DirectX 9.0 on Windows XP SP2, SP3
  - DirectX 9.0 on Windows XP Professional x64 Edition, SP2
  - DirectX 9.0 on Windows Server 2003 SP1, SP2
  - DirectX 9.0 on Windows Server 2003 x64 Edition, SP2
  - DirectX 9.0 on Windows Server 2003 SP1, SP2 for Itanium-based Systems

o ¿µÇâ¹ÞÁö ¾Ê´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Windows Vista, SP1
  - Microsoft Windows Vista x64 Edition, SP1
  - Microsoft Windows Server 2008 for 32-bit Systems
  - Microsoft Windows Server 2008 for x64-based Systems
  - Microsoft Windows Server 2008 for Itanium-based Systems

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/bulletin/MS09-011.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-011.mspx

4. MS À©µµ¿ì Ãë¾àÁ¡À¸·Î ÀÎÇÑ ±ÇÇÑ »ó½Â ¹®Á¦Á¡(Áß¿ä, 959454)

o ¼³ ¸í
MS À©µµ¿ì¿¡¼­ ³×Æ®¿öÅ© ¼­ºñ½º ¹× ·ÎÄà ¼­ºñ½º °èÁ¤À» ó¸®ÇÏ´Â °úÁ¤¿¡ ±ÇÇÑ »ó½Â Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ÇØ´ç Ãë¾àÁ¡À» °ø°Ý, Ãë¾àÇÑ ½Ã½ºÅÛ¿¡ ´ëÇØ ¿ÏÀüÇÑ ±ÇÇÑÀ» ȹµæÇÒ ¼ö ÀÖ´Ù.

o °ü·Ã Ãë¾àÁ¡
  - Windows MSDTC Service Isolation Vulnerability(CVE-2008-1436)
  - Windows WMI Service Isolation Vulnerability(CVE-2009-0078)
  - Windows RPCSS Service Isolation Vulnerability(CVE-2009-0079)
  - Windows Thread Pool ACL Weakness Vulnerability(CVE-2009-0080)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Windows 2000 SP4
  - Microsoft Windows XP SP2, SP3
  - Microsoft Windows XP Professional x64 Edition, SP2
  - Microsoft Windows Server 2003 SP1, SP2
  - Microsoft Windows Server 2003 x64 Edition, SP2
  - Microsoft Windows Server 2003 for Itanium-based Systems SP1, SP2
  - Microsoft Windows Vista, SP1
  - Microsoft Windows Vista x64 Edition, SP1
  - Microsoft Windows Server 2008 for 32-bit Systems
  - Microsoft Windows Server 2008 for x64-based Systems
  - Microsoft Windows Server 2008 for Itanium-based Systems

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/bulletin/MS09-012.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-012.mspx

5. MS À©µµ¿ì HTTP ¼­ºñ½º Ãë¾àÁ¡À¸·Î ÀÎÇÑ ¿ø°ÝÄÚµå ½ÇÇà ¹®Á¦Á¡(±ä±Þ, 960803)

o ¼³ ¸í
MS À©µµ¿ìÀÇ HTTP ¼­ºñ½º¿¡ ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ÇØ´ç Ãë¾àÁ¡À» ÀÌ¿ëÇÑ ¾ÇÀÇÀûÀÎ À¥ÆäÀÌÁö¸¦ ±¸ÃàÇÑ ÈÄ »ç¿ëÀÚÀÇ ¹æ¹®À» À¯µµÇÏ¿© Ãë¾à½Ã½ºÅÛ¿¡ ´ëÇØ ¿ÏÀüÇÑ ±ÇÇÑ È¹µæÀÌ °¡´ÉÇÏ´Ù.

o °ü·Ã Ãë¾àÁ¡
  - Windows HTTP Services Integer Underflow Vulnerability(CVE-2009-0086)
  - Windows HTTP Services Certificate Name Mismatch Vulnerability(CVE-2009-0089)
  - Windows HTTP Services Credential Reflection Vulnerability(CVE-2009-0550)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Windows 2000 SP4
  - Microsoft Windows XP SP2, SP3
  - Microsoft Windows XP Professional x64 Edition, SP2
  - Microsoft Windows Server 2003 SP1, SP2
  - Microsoft Windows Server 2003 x64 Edition, SP2
  - Microsoft Windows Server 2003 for Itanium-based Systems SP1, SP2
  - Microsoft Windows Vista, SP1
  - Microsoft Windows Vista x64 Edition, SP1
  - Microsoft Windows Server 2008 for 32-bit Systems
  - Microsoft Windows Server 2008 for x64-based Systems
  - Microsoft Windows Server 2008 for Itanium-based Systems

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/Bulletin/MS09-013.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-013.mspx

6. Internet Explorer ´©Àû º¸¾È¾÷µ¥ÀÌÆ®(±ä±Þ, 963027)

o ¼³ ¸í
Internet Explorer¿¡ ¿ø°ÝÄÚµå ½ÇÇà Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ÇØ´ç Ãë¾àÁ¡À» ÀÌ¿ëÇÑ ¾ÇÀÇÀûÀÎ À¥ÆäÀÌÁö¸¦ ±¸ÃàÇÑ ÈÄ »ç¿ëÀÚÀÇ ¹æ¹®À» À¯µµÇÏ¿© Ãë¾à½Ã½ºÅÛ¿¡ ´ëÇØ ¿ÏÀüÇÑ ±ÇÇÑ È¹µæÀÌ °¡´ÉÇÏ´Ù.

o °ü·Ã Ãë¾àÁ¡
  - Blended Threat Remote Code Execution Vulnerability(CVE-2008-2540)
  - WinINet Credential Reflection Vulnerability(CVE-2009-0550)
  - Page Transition Memory Corruption Vulnerability(CVE-2009-0551)
  - Uninitialized Memory Corruption Vulnerability(CVE-2009-0552)
  - Uninitialized Memory Corruption Vulnerability(CVE-2009-0553)
  - Uninitialized Memory Corruption Vulnerability(CVE-2009-0554)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - Internet Explorer 5.01 SP4 for Microsoft Windows 2000 SP4
  - Internet Explorer 6.0 SP1 for Microsoft Windows 2000 SP4
  - Internet Explorer 6 for Microsoft Windows XP SP2, SP3
  - Internet Explorer 6 for Microsoft Windows XP Professional x64 Edition, SP2
  - Internet Explorer 6 for Microsoft Windows Server 2003 SP1, SP2
  - Internet Explorer 6 for Microsoft Windows Server 2003 x64 Edition, SP2
  - Internet Explorer 6 for Microsoft Windows Server 2003 SP1, SP2 for Itanium-based Systems
  - Internet Explorer 7 for Microsoft Windows XP SP2, SP3
  - Internet Explorer 7 for Microsoft Windows XP Professional x64 Edition, SP2
  - Internet Explorer 7 for Microsoft Windows Server 2003 SP1, SP2
  - Internet Explorer 7 for Microsoft Windows Server 2003 SP1, SP2 for Itanium-based Systems
  - Internet Explorer 7 for Microsoft Windows Server 2003 x64 Edition, SP2
  - Internet Explorer 7 for Microsoft Windows Vista, SP1
  - Internet Explorer 7 for Microsoft Windows Vista x64 Edition, SP1
  - Internet Explorer 7 for Microsoft Windows Server 2008
  - Internet Explorer 7 for Microsoft Windows Server 2008 x64 Edition
  - Internet Explorer 7 for Microsoft Windows Server 2008 for Itanium-based Systems

o ¿µÇâ¹ÞÁö ¾Ê´Â ¼ÒÇÁÆ®¿þ¾î
  - Internet Explorer 8 for Microsoft Windows XP SP2, SP3
  - Internet Explorer 8 for Microsoft Windows XP Professional x64 Edition, SP2
  - Internet Explorer 8 for Microsoft Windows Server 2003 SP1, SP2
  - Internet Explorer 8 for Microsoft Windows Server 2003 x64 Edition, SP2
  - Internet Explorer 8 for Microsoft Windows Server 2003 SP1, SP2 for Itanium-based Systems
  - Internet Explorer 8 for Microsoft Windows Vista, SP1
  - Internet Explorer 8 for Microsoft Windows Vista x64 Edition, SP1
  - Internet Explorer 8 for Microsoft Windows Server 2008
  - Internet Explorer 8 for Microsoft Windows Server 2008 x64 Edition
  - Internet Explorer 8 for Microsoft Windows Server 2008 for Itanium-based Systems

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/Bulletin/MS09-014.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-014.mspx

7. SearchPathÀÇ È¥ÇÕ º¸¾ÈÀ§Çù Ãë¾àÁ¡À¸·Î ÀÎÇÑ ±ÇÇÑ »ó½Â ¹®Á¦Á¡(º¸Åë, 959426)

o ¼³ ¸í
MS À©µµ¿ìÀÇ SearchPath ±â´É¿¡ ±ÇÇÑ »ó½Â ¹®Á¦Á¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀڴ Ư¼öÇÏ°Ô Á¶ÀÛµÈ ÆÄÀÏÀÌ Æ÷ÇÔµÈ ¾ÇÀÇÀûÀÎ À¥ÆäÀÌÁö¸¦ ±¸ÃàÇÑ ÈÄ »ç¿ëÀÚÀÇ ¹æ¹®À» À¯µµÇϰųª À̸ÞÀÏ Ã·ºÎÆÄÀÏÀ» ¿­¾îº¸µµ·Ï À¯µµÇÏ¿© Ãë¾àÇÑ ½Ã½ºÅÛ¿¡ Á¢±ÙÇÒ ¼ö ÀÖ´Â ±ÇÇÑÀ» ȹµæÇÒ ¼ö ÀÖ´Ù.

* SearchPath : ÁöÁ¤µÈ °æ·Î¿¡¼­ ƯÁ¤ ÆÄÀÏÀ» °Ë»öÇÏ´Â ±â´ÉÀ» Á¦°øÇÏ´Â ÇÁ·Î±×·¡¹Ö ÀÎÅÍÆäÀ̽º

o °ü·Ã Ãë¾àÁ¡
  - Blended Threat Elevation of Privilege Vulnerability(CVE-2008-2540)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Windows 2000 SP4
  - Microsoft Windows XP SP2, SP3
  - Microsoft Windows XP Professional x64 Edition, SP2
  - Microsoft Windows Server 2003 SP1, SP2
  - Microsoft Windows Server 2003 x64 Edition, SP2
  - Microsoft Windows Server 2003 for Itanium-based Systems SP1, SP2
  - Microsoft Windows Vista, SP1
  - Microsoft Windows Vista x64 Edition, SP1
  - Microsoft Windows Server 2008 for 32-bit Systems
  - Microsoft Windows Server 2008 for x64-based Systems
  - Microsoft Windows Server 2008 for Itanium-based Systems

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/Bulletin/MS09-015.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-015.mspx

8. MS ISA ¼­¹ö ¹× Forefront Threat Management Gateway(Medium Business Edition)ÀÇ ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡(Áß¿ä, 961759)

o ¼³ ¸í
MS ISA ¹× Forefront Threat Management Gateway(Medium Business Edition)¿¡ ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡ÀÌ Á¸ÀçÇÏ¿© °ø°ÝÀÚ´Â ÇØ´ç Ãë¾àÁ¡À» °ø°Ý, Ãë¾àÇÑ ½Ã½ºÅÛÀÇ ±â´ÉÀ» ¸¶ºñ½Ãų ¼ö ÀÖ´Ù.

* Forefront Threat Management Gateway : MS»çÀÇ ÅëÇÕÀ§Çù°ü¸® Á¦Ç°
* ISA(Internet Security and Acceleration Server) : ¼­¹ö ±â¹ÝÀÇ MS À©µµ¿ì¿¡ ±â¾÷¿ë ¹æÈ­º®°ú °í¼º´É À¥ ij½Ã¸¦ ÅëÇÕ Á¦°øÇÏ´Â ¼Ö·ç¼Ç


o °ü·Ã Ãë¾àÁ¡
  - Web Proxy TCP State Limited Denial of Service Vulnerability(CVE-2009-0077)
  - Cross-Site Scripting Vulnerability(CVE-2009-0237)

o ¿µÇâ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Forefront Threat Management Gateway, Medium Business Edition
  - Microsoft Internet Security and Acceleration Server 2004 Standard Edition SP3
  - Microsoft Internet Security and Acceleration Server 2004 Enterprise Edition SP3
  - Microsoft Internet Security and Acceleration Server 2006
  - Microsoft Internet Security and Acceleration Server 2006 Supportability Update
  - Microsoft Internet Security and Acceleration Server 2006 SP1

o ¿µÇâ¹ÞÁö ¾Ê´Â ¼ÒÇÁÆ®¿þ¾î
  - Microsoft Internet Security and Acceleration Server 2000 SP2

o °ü·Ã»çÀÌÆ®
¡æ ¿µ¹® : http://www.microsoft.com/technet/security/Bulletin/MS09-016.mspx
¡æ ÇÑ±Û : http://www.microsoft.com/korea/technet/security/bulletin/MS09-016.mspx


¡á Âü°íÁ¤º¸
Microsoft Update
¡æ http://update.microsoft.com/microsoftupdate/v6/default.aspx?ln=ko

 

 







      << prev     1     next >>