¡à °³¿ä
o Adobe Acrobat°ú ReaderÀÇ PDFÆÄÀϳ»ÀÇ ÀÓÀÇ ¸µÅ© Ŭ¸¯À» ÅëÇÑ ¿ø°ÝÄÚµå ½ÇÇà º¸¾È Ãë¾àÁ¡
¼öÁ¤ ¹öÀüÀÌ ¹ßÇ¥µÊ[1]
¡Ø Adobe»ç´Â MS IE7.0ÀÇ URI Çڵ鷯 Ãë¾àÁ¡[2]¿¡ ´ëÇÏ¿© ÀÚ»çÀÇ Ãë¾àÇÑ ÀÀ¿ëÇÁ·Î±×·¥µéÀ»
´ë»óÀ¸·Î ÇØ´ç º¸¾È¾÷µ¥ÀÌÆ®¸¦ ¹ßÇ¥
o ÇÏÀ§ ¹öÀüÀÇ Adobe Acrobat°ú Adobe Reader»ç¿ëÀ¸·Î ÀÎÇÑ ¾Ç¼ºÄÚµå °¨¿°µîÀÇ »ç°í°¡ ¹ß»ýÇÒ
¼ö ÀÖÀ¸¹Ç·Î ÃֽŹöÀüÀ¸·Î ¾÷±×·¹ÀÌµå ¼³Ä¡ ÇÊ¿ä
¡à ÇØ´ç ÇÁ·Î±×·¥
o MS IE 7.0ÀÌ ¼³Ä¡µÈ Windows XP SP2, Windows 2003 SE SP2 ½Ã½ºÅÛ»óÀÇ
- Adobe Reader 8.1 ÀÌÇÏ ¹öÀü
- Adobe Reader 7.0.9 ÀÌÇÏ ¹öÀü
- Adobe Acrobat Professional, 3D and Standard 8.1 ÀÌÇÏ ¹öÀü
- Adobe Acrobat Standard, Professional and Elements 7.0.9 ÀÌÇÏ ¹öÀü
¡à ¼³¸í
o Adobe Reader¿Í Adobe Acrobat PDF ¹®¼³»¿ë Áß ÀÓÀǸµÅ© Ŭ¸¯½Ã ¿ø°ÝÄڵ尡 ½ÇÇàµÇ´Â
Ãë¾àÁ¡(CVE-2007-5020[3])ÀÌ ¹ßÇ¥µÊ
o »ó±â Ãë¾àÁ¡À» ¾Ç¿ëÇÏ¿© °ø°ÝÀÚ¿¡ ÀÇÇØ Á¶ÀÛµÈ PDF¹®¼³»ÀÇ ´Ù¿î·Îµå ¸µÅ©¸¦ Ŭ¸¯ÇÏ´Â °æ¿ì
ÇÇÇØÀÚÀÇ PC¿¡¼ ƯÁ¤ ÇÁ·Î±×·¥À» ½ÇÇà½ÃÅ°°Å³ª ¾Ç¼ºÄÚµå ´Ù¿î·Îµåµî°ú °°Àº ¾Ç¼ºÇàÀ§¸¦
ÇÒ ¼ö ÀÖÀ½
¡à ÇØ°á¹æ¾È
o Adobe Reader 8.1.1¿Í Adobe Acrobat 8.1.1 »ç¿ëÀÚ´Â °¢ ÇÁ·Î±×·¥¿¡ ´ëÇÑ º¸¾ÈÆÐÄ¡ ½Ç½Ã
¡Ø Adobe Reader 8.1.1 ÆÐÄ¡[4], Adobe Acrobat 8.1.1 ÆÐÄ¡[5]
o º¸¾ÈÆÐÄ¡°¡ ¹ßÇ¥µÇÁö ¾ÊÀº ¹öÁ¯ÀÇ ÇÁ·Î±×·¥ »ç¿ëÀÚ´Â ÆÐÄ¡ ¹ßÇ¥ ÀÌÀü±îÁö ¾Æ·¡ ÁÖÀÇ»çÇ×À» Áؼö
- ÀǽɵǴ À̸ÞÀÏ¿¡ Æ÷ÇÔµÈ PDF ¸µÅ©¸¦ ¹æ¹®ÇÏÁö ¾ÊÀ½
- ½Å·ÚµÇÁö ¾ÊÀº À¥»çÀÌÆ®ÀÇ PDF ´Ù¿î·Îµå ÁÖÀÇ
- ½Å·ÚµÇÁö ¾ÊÀº PDF ¹®¼³»¿¡ Æ÷ÇÔµÈ ¸µÅ© Ŭ¸¯ÇÏÁö ¾ÊÀ½
- °³ÀιæȺ®°ú ¹é½ÅÁ¦Ç°ÀÇ »ç¿ë µî
¡à Âü°í»çÀÌÆ®
[1]
http://www.adobe.com/support/security/bulletins/apsb07-18.html
[2]
http://www.microsoft.com/technet/security/advisory/943521.mspx
[3]
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-5020
[4]
http://www.adobe.com/support/downloads/product.jsp?product=10&platform=Windows
[5]
http://www.adobe.com/support/downloads/product.jsp?product=1&platform=Windows
[Âü °í]
1. ¿ë¾î Á¤¸®
o PDF(Portable Document Format) : AdobeÞä°¡ °³¹ßÇÑ Acrobat µîÀÇ ÇÁ·Î±×·¥¿¡¼ »ç¿ëÇÏ´Â
ÆÄÀÏ Çü½Ä
o Adobe Acrobat : PDF»ý¼º ¹× ÆíÁýÀ» Áö¿øÇÏ´Â ÀÀ¿ë ÇÁ·Î±×·¥
o Adobe Reader : PDF¸¦ º¼¼ö ÀÖµµ·Ï Áö¿øÇÏ´Â ÀÀ¿ë ÇÁ·Î±×·¥
2. ±âŸ ¹®ÀÇ»çÇ×
o Çѱ¹Á¤º¸º¸È£ÁøÈï¿ø ÀÎÅͳÝħÇØ»ç°í´ëÀÀÁö¿ø¼¾ÅÍ : ±¹¹ø¾øÀÌ 118