¡à °³¿ä
o AdobeÞä´Â Adobe Reader ¹× Acrobat¿¡ ¿µÇâÀ» ÁÖ´Â ´Ù¼öÀÇ Ãë¾àÁ¡À» ÇØ°áÇÑ º¸¾È ¾÷µ¥ÀÌÆ®¿¡
´ëÇÑ °øÁö¸¦ ¹ßÇ¥ [1]
o °ø°ÝÀÚ´Â ÇØ´ç Ãë¾àÁ¡À» ¾Ç¿ëÇÏ¿© ¿µÇâ ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î¸¦ ºñÁ¤»óÀûÀ¸·Î Á¾·á½ÃÅ°°Å³ª,
ÀÓÀÇÀÇ ¸í·ÉÀ» ½ÇÇàÇÏ¿© ½Ã½ºÅÛ¿¡ ´ëÇÑ ±ÇÇÑ È¹µæÇÒ ¼ö ÀÖÀ½
o °ü·ÃÃë¾àÁ¡ :
- Cross-site scripting vulnerability (CVE-2010-0190)
- Prefix protocol handler vulnerability (CVE-2010-0191)
- Denial of service vulnerability (CVE-2010-0192, CVE-2010-0193, CVE-2010-0196)
- Memory corruption vulnerability (CVE-2010-0194, CVE-2010-0197, CVE-2010-0201,
CVE-2010-0204)
- Font handling vulnerability (CVE-2010-0195)
- Buffer overflow vulnerability (CVE-2010-0198, CVE-2010-0199, CVE-2010-0202,
CVE-2010-0203)
- Heap-based overflow vulnerability (CVE-2010-1241)
o ¿µÇâ : ¿ø°ÝÄÚµå½ÇÇà, ¼ºñ½º°ÅºÎ
o Áß¿äµµ : ±ä±Þ
¡à ÇØ´ç ½Ã½ºÅÛ
o ¿µÇâ ¹Þ´Â ¼ÒÇÁÆ®¿þ¾î [1]
- Adobe Reader 9.3.1 ¹× ÀÌÀü ¹öÀü (Windows, Macintosh, UNIX)
- Adobe Acrobat 9.3.1 ¹× ÀÌÀü ¹öÀü (Windows, Macintosh)
- Adobe Reader 8.2.1 ¹× ÀÌÀü ¹öÀü (Windows, Macintosh)
- Adobe Acrobat 8.2.1 ¹× ÀÌÀü ¹öÀü (Windows, Macintosh)
¡à ÇØ°á ¹æ¾È
o ÇØ´ç ¼ÒÇÁÆ®¿þ¾î¸¦ Adobe Acrobat 9.3.2 ¹× Adobe Reader 8.2.2·Î ¾÷µ¥ÀÌÆ®
- Adobe Acrobat/ReaderÀÇ ¸Þ´º¿¡¼ "µµ¿ò¸»" ¡æ "¾÷µ¥ÀÌÆ® È®ÀÎ"À» ¼±ÅÃ
- Adobe Á¦Ç° ¾÷µ¥ÀÌÆ® ÆäÀÌÁö[2]¿¡¼ ÇØ´ç ¼ÒÇÁÆ®¿þ¾î¸¦ ¼±Åà ÈÄ ´Ù¿î·Îµå ¹× ¼³Ä¡
¡à ¿ë¾î Á¤¸®
o PDF(Portable Document Format) : AdobeÞä°¡ °³¹ßÇÑ ´Ù¾çÇÑ Ç÷§ÆûÀ» Áö¿øÇÏ´Â ÀüÀÚ¹®¼
ÆÄÀÏ Çü½Ä
o Adobe Acrobat : PDF ¹®¼ ÆíÁý/Á¦ÀÛÀ» Áö¿øÇÏ´Â »ó¿ë ÇÁ·Î±×·¥
o Adobe Reader : PDF ¹®¼ÀÇ ÆíÁý ±â´ÉÀº ¾øÀÌ º¸±â/Àμ⸸ ÇÒ ¼ö ÀÖ´Â ¹«·á ÇÁ·Î±×·¥
¡à ÂüÁ¶»çÀÌÆ®
[1] http://www.adobe.com/support/security/bulletins/apsb10-09.html
[2] http://www.adobe.com/downloads/updates/
|
|
|
