Home | Data Center | Contact US | Login

Á¦¸ñ Adobe Flash Player ´ÙÁß Ãë¾àÁ¡ º¸¾È¾÷µ¥ÀÌÆ® ±Ç°í
ÀÛ¼ºÀÏ 2009-02-27 09:30:20

¡à °³¿ä
   o Adobe Flash Player¿¡¼­ ÀÔ·Â °ËÁõ ¿À·ù, ¹öÆÛ¿À¹öÇ÷Î, Ŭ¸¯ÀçÅ· µîÀÇ ´Ù¼ö Ãë¾àÁ¡ÀÌ 
     ¹ß°ßµÇ¾î º¸¾È ¾÷µ¥ÀÌÆ®°¡ ¹ßÇ¥µÊ[1]
   o ³·Àº ¹öÀüÀÇ Adobe Flash Player »ç¿ëÀ¸·Î ¾Ç¼ºÄÚµå °¨¿° µîÀÇ »ç°í°¡ ¹ß»ýÇÒ ¼ö ÀÖÀ½À¸·Î 
     »ç¿ëÀÚÀÇ ÁÖÀÇ ¹× ÃֽŹöÀü ¼³Ä¡°¡ ±Ç°íµÊ

¡à ÇØ´çÇÁ·Î±×·¥
   o Adobe Flash Player 10.0.12.36 ÀÌÇÏ ¹öÀüÀÌ ¼³Ä¡µÈ Linux Á¦¿Ü ¸ðµç ¿î¿µÃ¼Á¦
   o Adobe Flash Player 10.0.12.36 ÀÌÇÏ ¹öÀü - ³»ºÎ ³×Æ®¿öÅ© ¹èÆ÷¿ë
   o Adobe Flash Player 10.0.15.3 ÀÌÇÏ ¹öÀüÀÌ ¼³Ä¡µÈ Linux ¿î¿µÃ¼Á¦
   o Adobe AIR 1.5 ¹öÀü
   o Adobe Flash CS4 Professional¿¡¼­ »ç¿ëµÇ´Â Adobe Flash Player 10.0.22.87 ÀÌÀü¹öÀü
   o Adobe Flash CS3 Professional¿¡¼­ »ç¿ëµÇ´Â Adobe Flash Player / Debug Player 9.0.159.0 
     ÀÌÀü¹öÀü
   o Adobe Flex 3¿¡¼­ »ç¿ëµÇ´Â Adobe Flash Debug Player 10.0.22.87 ÀÌÀü¹öÀü 

¡à ¼³¸í
   o Adobe Flash Player Ãë¾àÁ¡¿¡ ´ëÇÑ º¸¾È ¾÷µ¥ÀÌÆ®(ÃÑ 5°Ç)°¡ ¾Æ·¡¿Í °°ÀÌ ¹ßÇ¥µÊ
     ¨ç Adobe Flash Player°¡ °³Ã¼¸¦ »èÁ¦ÇÏ´Â °úÁ¤¿¡¼­ °³Ã¼¿¡ ÇÒ´çµÈ ¸Þ¸ð¸®¸¦ ÀûÀýÈ÷ ÇØÁ¦ÇÏÁö 
        ¾Ê¾Æ ¹ß»ýÇÏ´Â ¿ø°ÝÄÚµå ½ÇÇà °¡´ÉÇÑ ¹öÆÛ¿À¹öÇ÷ΠÃë¾àÁ¡[2](CVE-2009-0520)
     ¨è Adobe Flash Player°¡ ºÎÀûÀýÇÏ°Ô ÀÔ·Â °ËÁõÇÏ´Â °úÁ¤¿¡¼­ ¹ß»ýÇÏ´Â ¼­ºñ½º °ÅºÎ Ãë¾àÁ¡[3]
        (CVE-2009-0519)
     ¨é Adobe Flash PlayerÀÇ ¼³Á¤ °ü¸®ÀÚ·Î ÀÎÇÑ Å¬¸¯ÀçÅ· Ãë¾àÁ¡[4](CVE-2009-0114)
     ¨ê Windows ¿î¿µÃ¼Á¦¿¡¼­ ¸¶¿ì½º Æ÷ÀÎÅ͸¦ Ãâ·ÂÇÒ ¶§ ¹ß»ýÇϴ Ŭ¸¯ÀçÅ· Ãë¾àÁ¡[5]
        (CVE-2009-0522)
     ¨ë Linux ¿î¿µÃ¼Á¦¿¡¼­ ±ÇÇÑ »ó½ÂÀ¸·Î ¿¬°èµÉ ¼ö ÀÖ´Â Á¤º¸ ³ëÃâ Ãë¾àÁ¡[6](CVE-2009-0521)
                      
   o »ó±â Ãë¾àÁ¡À» ÀÌ¿ëÇÏ¿© °ø°ÝÀÚ´Â SWF ÆÄÀÏÀ» Á¶ÀÛÇÏ¿© ÇÇÇØÀÚÀÇ PC¿¡ ¾Ç¼º ½ºÅ©¸³Æ®¸¦ 
     ½ÇÇà½ÃÅ°°Å³ª ¾Ç¼ºÄÚµå °¨¿° µî°ú °°Àº ¾Ç¼ºÇàÀ§¸¦ ÇÒ ¼ö ÀÖÀ½

¡à ÇØ°á¹æ¾È
   o ´ÙÀ½ Ç¥¿Í °°Àº ¹öÀüÀÇ Adobe Á¦Ç° »ç¿ëÀÚ´Â Ãë¾àÇÏÁö ¾ÊÀº ¹öÀüÀ¸·Î ¾÷µ¥ÀÌÆ® ÇÒ °ÍÀ» ±Ç°íÇÔ
     ¡Ø ÀϺΠAdobe Á¦Ç°Àº ±¸±Û Åø¹Ù Ãß°¡ ¼³Ä¡°¡ ±âº»À¸·Î ¼³Á¤µÇ¾î ÀÖÀ¸´Ï ¼³Ä¡ Àü È®ÀÎ ÇÊ¿ä

Ãë¾à ¼ÒÇÁÆ®¿þ¾î

Ãë¾àÁ¡
º¸¿Ï ¹öÀü

¾÷µ¥ÀÌÆ® »çÀÌÆ®

Adobe Flash Player 10.0.12.36
ÀÌÇϹöÀü

10.0.22.87

Ç÷¹ÀÌ¾î ´Ù¿î·Îµå ¼¾ÅÍ[7]

Adobe Flash Player 10.0.12.36
ÀÌÇϹöÀü - ³»ºÎ ³×Æ®¿öÅ© ¹èÆ÷¿ë

10.0.22.87

Ç÷¹À̾î Á¤Ç° ÀÎÁõ[8]

Adobe Flash Player 10.0.15.3
ÀÌÇϹöÀü
- Linux ¿î¿µÃ¼Á¦

10.0.22.87

Ç÷¹ÀÌ¾î ´Ù¿î·Îµå ¼¾ÅÍ[7]

AIR 1.5

AIR 1.5.1

AIR ´Ù¿î·Îµå ¼¾ÅÍ[9]

Adobe Flash CS4 Professional

10.0.22.87

Adobe Flash CS4 Pro ¾÷µ¥ÀÌÆ®[10]

Adobe Flash CS3 Professional

9.0.159.0

Ç÷¡½Ã µð¹ö±× Ç÷¹ÀÌ¾î ¾÷µ¥ÀÌÆ®[11]

Adobe Flex 3

10.0.22.87

Ç÷¡½Ã µð¹ö±× Ç÷¹ÀÌ¾î ¾÷µ¥ÀÌÆ®[11]


   o Adobe Flash ÄÁÅÙÃ÷¸¦ »ç¿ëÇÏ´Â À¥¼­¹ö °ü¸®ÀÚ´Â ¾Æ·¡¿Í °°ÀÌ À¥ÆäÀÌÁö¸¦ ¼öÁ¤ÇÏ¿©
      ÀÌ¿ëÀÚµéÀÌ ÃֽŹöÀü Adobe Flash Player¸¦ ¼³Ä¡Çϵµ·Ï ActiveX ¹öÀü ¼öÁ¤ ÇÊ¿ä


< object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=10,0,22,87" width="921" height="109" >

   o ÇâÈÄ¿¡µµ À¯»ç Ãë¾àÁ¡ ³ëÃâ·Î ÀÎÇÑ ÇÇÇØ¿¹¹æÀ» À§ÇØ ¾Æ·¡¿Í °°ÀÌ ¾ÈÀüÇÑ ºê¶ó¿ì¡ ½À°üÀ»
     ÁؼöÇØ¾ß ÇÔ
     - ½Å·ÚµÇÁö ¾ÊÀº À¥»çÀÌÆ®ÀÇ Ç÷¡½Ã ÆÄÀÏ ´Ù¿î·Îµå ÁÖÀÇ 
     - ÀǽɵǴ À̸ÞÀÏ¿¡ Æ÷ÇÔµÈ Ç÷¡½Ã ÆÄÀÏ ¸µÅ©¸¦ ¹æ¹®ÇÏÁö ¾ÊÀ½ 
     - °³ÀιæÈ­º®°ú ¹é½ÅÁ¦Ç° »ç¿ë µî

¡à ¿ë¾î Á¤¸®
   o Ŭ¸¯ÀçÅ· : »ç¿ëÀÚ°¡ À¥ ÆäÀÌÁö¸¦ Ŭ¸¯ ÇÒ ¶§ Àڽŵµ ¸ð¸£°Ô ÀǵµÇÏÁö ¾ÊÀº ±â´ÉÀ» ½ÇÇà 
     ÇÏ¿© °ø°ÝÀÚ°¡ ÄÄÇ»ÅÍ¿¡ ´ëÇÑ Á¦¾î±Ç ȤÀº Áß¿ä Á¤º¸¸¦ ȹµæÇÏ´Â Ãë¾àÁ¡[12]
   o Adobe Flash CS3/CS4 Professional : Adobe Flash ¾Ö´Ï¸ÞÀÌ¼Ç Á¦ÀÛÀ» À§ÇÑ µµ±¸[13]
   o Adobe AIR(Adobe Integrated Runtime) : ÀÌ¹Ì ÀÔÁõµÈ À¥ ±â¼úÀ» ºê¶ó¿ìÀú ¿ÜºÎ µ¥½ºÅ©Åé 
     ¿¡¼­ ½ÇÇàµÉ ¼ö ÀÖµµ·Ï µµ¿ÍÁÖ´Â ÇÁ·Î±×·¥ Á¦ÀÛ µµ±¸[14]
   o Adobe Flex : Adobe Flash Player ¶Ç´Â Adobe AIR¿¡¼­ »ç¿ëÇÒ ÀÎÅÍ³Ý ¾îÇø®ÄÉÀ̼Ǡ
     °³¹ß µµ±¸[15]

¡à ±âŸ ¹®ÀÇ»çÇ×
   o Çѱ¹Á¤º¸º¸È£ÁøÈï¿ø ÀÎÅͳÝħÇØ»ç°í´ëÀÀÁö¿ø¼¾ÅÍ : ±¹¹ø¾øÀÌ 118

¡à Âü°í»çÀÌÆ®
   [01] http://www.adobe.com/support/security/bulletins/apsb09-01.html
   [02] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0520
   [03] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0519
   [04] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0114
   [05] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0522
   [06] http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-0521
   [07] http://www.adobe.com/go/getflash
   [08] http://www.adobe.com/products/players/fpsh_distribution1.html
   [09] http://get.adobe.com/kr/air/
   [10] http://www.adobe.com/support/flashplayer/downloads.html#fp10
   [11] http://www.adobe.com/support/flashplayer/downloads.html#fp9
   [12] http://en.wikipedia.org/wiki/Clickjacking
   [13] http://www.adobe.com/kr/products/flash/
   [14] http://www.adobe.com/products/air/
   [15] http://www.adobeflex.co.kr/aboutflex/flex.html

  [À©µµ¿ìÁî º¸¾È] 2009³â 3¿ù Microsoft º¸¾È ¾÷µ¥ÀÌÆ®
  MS Excel ½Å±Ô ¿ø°ÝÄÚµå½ÇÇà Ãë¾àÁ¡À¸·Î ÀÎÇÑ ÇÇÇØÁÖÀÇ








ȸ»ç¼Ò°³ °³ÀÎÁ¤º¸Ãë±Þ¹æħ ÀÌ¿ë¾à°ü À̸ÞÀÏÁÖ¼Ò ¹«´Ü¼öÁý°ÅºÎ CONTACT US IDC ¾àµµ
ȸ»ç¼Ò°³ °³ÀÎÁ¤º¸Ãë±Þ¹æħ ÀÌ¿ë¾à°ü À̸ÞÀÏÁÖ¼Ò ¹«´Ü¼öÁý°ÅºÎ CONTACT US IDC ¾àµµ ȸ»ç¼Ò°³ °³ÀÎÁ¤º¸Ãë±Þ¹æħ ÀÌ¿ë¾à°ü À̸ÞÀÏÁÖ¼Ò ¹«´Ü¼öÁý°ÅºÎ CONTACT US IDC ¾àµµ