¡à °³¿ä
o ÃÖ±Ù ¾ÖÇÃÞä¿¡¼ iOS 4.1(iPhone, iPod Touch) º¸¾È¾÷µ¥ÀÌÆ®¸¦ °ø°³[1]
o ÀÌ¿¡ ±¹³» iPhone ¹× iPod Touch ÀÌ¿ëÀڵ鿡°Ô ½Å¼ÓÇÑ ¾÷µ¥ÀÌÆ®¸¦ ±Ç°íÇÔ
¡à ¼³¸í
o iOS 4.1Àº ¾Æ·¡¿Í °°Àº Áß¿ä Ãë¾àÁ¡¿¡ ´ëÇÑ º¸¾È¾÷µ¥ÀÌÆ®¸¦ Æ÷ÇÔ
- Accessibility (CVE-2010-1809) : À§Ä¡Á¤º¸¸¦ À½¼ºÇؼ³ ÇØÁÖ´Â ÀÀ¿ëÇÁ·Î±×·¥ÀÇ À½¼ºÇؼ³
±â´ÉÀÌ ÀÛµ¿ ¾ÈµÇ´Â Ãë¾àÁ¡[2]
- FaceTime (CVE-2010-1810) : °ø°ÝÀÚ°¡ ±ÇÇÑÀÌ »ó½ÂµÈ ³×Æ®¿öÅ©»ó¿¡¼ ¸®µð·ºÆ®·Î
FaceTime CallÀ» ÇÒ ¼ö ÀÖ´Â Ãë¾àÁ¡[3]
- ImageIO (CVE-2010-1811) : ¾ÇÀÇÀûÀÎ ¸ñÀûÀ¸·Î ¸¸µç TITFÀ̹ÌÁö·Î ÀÎÇØ ÀÀ¿ëÇÁ·Î±×·¥ÀÌ
Á¾·áµÇ°Å³ª ÀÓÀÇÀÇ Äڵ尡 ½ÇÇàµÇ´Â Ãë¾àÁ¡[4]
- ImageIO (CVE-2010-1817) : ¾ÇÀÇÀûÀÎ ¸ñÀûÀ¸·Î ¸¸µç GIFÀ̹ÌÁö·Î ÀÎÇØ ÀÀ¿ëÇÁ·Î±×·¥ÀÌ
Á¾·áµÇ°Å³ª ÀÓÀÇÀÇ Äڵ尡 ½ÇÇàµÇ´Â Ãë¾àÁ¡[5]
- WebKit (CVE-2010-1770, CVE-2010-1771, CVE-2010-1780~1788, CVE-2010-1791,
CVE-2010-1793, CVE-2010-1812~1815) : ¾ÇÀÇÀûÀÎ ¸ñÀûÀ¸·Î ¸¸µç À¥»çÀÌÆ®¿¡
Á¢¼Ó½Ã ÀÀ¿ëÇÁ·Î±×·¥ÀÌ Á¾·áµÇ°Å³ª ÀÓÀÇÀÇ Äڵ尡 ½ÇÇàµÇ´Â Ãë¾àÁ¡[6,7,8,9,10,11,12,13,14,
15,16,17,18,19,20,21,22]
- WebKit (CVE-2010-1421) : ¾ÇÀÇÀûÀÎ ¸ñÀûÀ¸·Î ¸¸µç À¥»çÀÌÆ®¿¡ Á¢¼Ó½Ã Ŭ¸³º¸µåÀÇ ³»¿ëÀÌ
º¯°æµÇ´Â Ãë¾àÁ¡[23]
- WebKit (CVE-2010-1422) : ¾ÇÀÇÀûÀÎ ¸ñÀûÀ¸·Î ¸¸µç À¥»çÀÌÆ®¿¡ Á¢¼Ó½Ã ´Ù¸¥ »çÀÌÆ®¿Í
¿À·ù°¡ »ý±â´Â Ãë¾àÁ¡[24]
- WebKit (CVE-2010-1764) : ¾ÇÀÇÀûÀÎ ¸ñÀûÀ¸·Î ¸¸µç À¥»çÀÌÆ®¿¡ Á¢¼Ó½Ã Á¤º¸°¡ °ø°³µÇ´Â
Ãë¾àÁ¡[25]
o ÃֽŠº¸¾È¾÷µ¥ÀÌÆ® ¹ÌÀû¿ë½Ã, ¸ð¹ÙÀÏ ÀÎÅÍ³Ý »ç¿ë Áß ¾Ç¼ºÄÚµå °¨¿° µîÀÇ ÇÇÇظ¦ ÀÔÀ» ¼ö ÀÖÀ½
¡à ¾÷µ¥ÀÌÆ® ¹æ¹ý
¨ç PC¿¡¼ iTunes(¾ÆÀÌƪÁî)¸¦ ½ÇÇàÇÏ°í iPhone(iPod Touch)À» PC¿Í ¿¬°á
¨è ¡°¾÷µ¥ÀÌÆ®¡± ¹öÆ°À» Ŭ¸¯ÇÑ ÈÄ ¡°´Ù¿î·Îµå ¹× ¼³Ä¡¡± ¹öÆ°À» Ŭ¸¯ÇÏ¿© ¼ÒÇÁÆ®¿þ¾î ¾÷µ¥ÀÌÆ®
¡à ¿ë¾î Á¤¸®
o ImageIO : ¾ÖÇà Mac OS X¿ë ÇÁ·¹ÀÓ¿öÅ©¿¡ Æ÷ÇÔµÈ À̹ÌÁö󸮸¦ À§ÇÑ ÇÁ·¹ÀÓ¿öÅ©ÀÇ ÀÏÁ¾
o WebKit :¡¡À¥ºê¶ó¿ìÀú¸¦ ¸¸µå´Âµ¥ ÇÊ¿äÇÑ ¿ÀÇ ¼Ò½ºÇüÅÂÀÇ ÇÁ·¹ÀÓ¿öÅ©
o FaceTime :¡¡Wi-Fi¸ÁÀ» ÀÌ¿ëÇÑ ¿µ»óÅëÈ ¼ºñ½º
¡à ±âŸ ¹®ÀÇ»çÇ×
o JailbreakµÈ iPhoneµµ ¾÷µ¥ÀÌÆ®°¡ °¡´ÉÇÑ°¡¿ä?
- ¾÷µ¥ÀÌÆ®°¡ °¡´ÉÇÕ´Ï´Ù. ¾ÆÀÌƪÁ ÅëÇØ ¾÷µ¥ÀÌÆ®¸¦ ÇÏ½Ã±æ ¹Ù¶ø´Ï´Ù.
¡Ø ´Ü, º» ¾÷µ¥ÀÌÆ®¸¦ Àû¿ëÇÒ °æ¿ì Jailbreak°¡ Àû¿ëµÇÁö ¾ÊÀº »óÅ·Πµ¹¾Æ°©´Ï´Ù.
[Âü°í»çÀÌÆ®]
[1] http://support.apple.com/kb/HT4334
[2] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1809
[3] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1810
[4] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1811
[5] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1817
[6] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1770
[7] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1771
[8] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1780
[9] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1781
[10] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1782
[11] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1783
[12] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1784
[13] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1785
[14] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1786
[15] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1787
[16] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1788
[17] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1791
[18] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1793
[19] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1812
[20] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1813
[21] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1814
[22] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1815
[23] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1421
[24] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1422
[25] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-1764
|
|
|
