{"id":12,"date":"2006-10-08T01:30:00","date_gmt":"2006-10-08T01:30:00","guid":{"rendered":"http:\/\/newblog.mix1009.net\/?p=12"},"modified":"2006-10-08T01:30:00","modified_gmt":"2006-10-08T01:30:00","slug":"xp%ec%97%90%ec%84%9c-%ec%a2%80%eb%8d%94-%ec%95%88%ec%a0%84%ed%95%98%ea%b2%8c-%ec%9d%b8%ed%84%b0%eb%84%b7-%ec%84%9c%ed%95%91%ed%95%98%ea%b8%b0","status":"publish","type":"post","link":"https:\/\/mix1009.net\/?p=12","title":{"rendered":"XP\uc5d0\uc11c (\uc880\ub354) \uc548\uc804\ud558\uac8c \uc778\ud130\ub137 \uc11c\ud551\ud558\uae30"},"content":{"rendered":"
\n

\uc5bc\ub9c8\uc804 \ubc1c\uc0dd\ud55c VGXvgx.dll exploit<\/font><\/a><\/span>\ub098 XSS \ub370\ubaa8<\/font><\/a><\/span>\ub97c \ubcf4\uba74 \uc778\ud130\ub137 \uc11c\ud551\ud558\uae30 \ubb34\uc11c\uc6cc\uc9c0\ub124\uc694. IE\ub3c4 \ubb38\uc81c\uc9c0\ub9cc FireFox\ub3c4 \ubcf4\uc548\ubc84\uadf8\uac00 \ub9ce\uc774 \ubc1c\uacac\ub418\uace0 \uc788\uc2b5\ub2c8\ub2e4. FireFox\uac00 \uc548\uc804\ud558\ub2e4\uace0 \ud558\uace0, \uc5ec\ub7ec\uac00\uc9c0 \ucd94\uac00 \uae30\ub2a5\ub4e4\uc744 \ubaa8\ub4c8(addon)\uc744 \ud1b5\ud558\uc5ec \uc124\uce58\ud560\uc218 \uc788\uc9c0\ub9cc… \uc544\uc9c1 \ud55c\uad6d \uc0ac\uc774\ud2b8\uc5d0\uc11c\ub294 \uc81c\uc57d\uc774 \ub9ce\uc2b5\ub2c8\ub2e4. IE \uc678\uc758 \ube0c\ub77c\uc6b0\uc800\uc5d0\uc11c\ub294 \uc815\uc0c1\uc801\uc73c\ub85c \ubcf4\uc774\uc9c0 \uc54a\ub294 \uc0ac\uc774\ud2b8\ub4e4\uc774 \uc544\uc9c1 \ub9ce\uc2b5\ub2c8\ub2e4. FireFox\uc5d0 IE Tab\uc744 \uc124\uce58\ud558\uc5ec \uc815\uc0c1\uc801\uc73c\ub85c \ubcf4\uc774\uc9c0 \uc54a\ub294 \ud398\uc774\uc9c0\ub97c \ubcfc\uc218\ub294 \uc788\uc9c0\ub9cc, IE\ub85c \ubcfc\ub54c \ub9c8\uc6b0\uc2a4 \uc81c\uc2a4\ucc98\ub4f1\uc774 \uc548\ub418\ub294\ub4f1 \ubd88\ud3b8\ud55c \uc810\uc774 \ub9ce\uc2b5\ub2c8\ub2e4. \ub610\ud55c \ubc1c\ud45c\ub418\ub294 FireFox \ubc84\uadf8\ub4e4<\/font><\/a><\/span>\uc744 \ubcf4\uba74 \uc18c\uc2a4\uac00 \uacf5\uac1c\ub418\uc11c \uadf8\ub7f0\uac74\uc9c0 \ubaa8\ub974\uc9c0\ub9cc, \ubcf4\uc548 \ubc84\uadf8\ub4e4\uc774 \uc790\uc8fc \ubc1c\uacac\ub429\ub2c8\ub2e4.<\/p>\n

buffer overflow\uc5d0 \ub300\ud55c \ud574\uacb0\ucc45\uc73c\ub85c \ucd5c\uadfc \ub098\uc624\ub294 \ud504\ub85c\uc138\uc11c\ub4e4\uc5d0\uc11c \uc9c0\uc6d0\ud558\ub294 \ub370\uc774\ud0c0 \uc2e4\ud589 \ubc29\uc9c0(Data Execution Prevention)<\/strong> \uae30\ub2a5\uc744 \uc0ac\uc6a9\ud558\ub294 \ubc29\ubc95\uc774 \uc788\uc2b5\ub2c8\ub2e4. \uc790\uc138\ud55c \uac83\uc740 \ubaa8\ub974\uaca0\uc9c0\ub9cc, \uc2a4\ud0dd \uc601\uc5ed\uc744 \uc2e4\ud589\ud558\ub824\uace0 \ud560\ub54c CPU\uc5d0\uc11c \uc774\uc5d0 \ub300\ud55c \uc608\uc678(exception)\uc744 \ubc1c\uc0dd\uc2dc\ucf1c\uc8fc\ub294 \uac83\uc785\ub2c8\ub2e4. \ub9ce\uc740 \ubc84\ud37c \uc624\ubc84\ud50c\ub85c\uc6b0 \uacf5\uaca9\uc774 \uc774 \uae30\ub2a5\uc744 \ud1b5\ud574\uc11c \ub9c9\uc544\uc9c0\uba70 \uc774\ubc88 dll \uacf5\uaca9\ub3c4 \uc774 \uae30\ub2a5\uc774 \ud65c\uc131\ud654 \ub418\uc5b4 \uc788\ub2e4\uba74 \uc601\ud5a5\uc744 \ubc1b\uc9c0 \uc54a\uc558\ub2e4\uace0 \ud569\ub2c8\ub2e4. DEP \uae30\ub2a5\uc740 XP SP2\uc640 \ucd5c\uc2e0 CPU\uc5d0\uc11c\ub9cc \ub3d9\uc791\ud558\uba70, \ub514\ud3f4\ud2b8\ub294 \uc2dc\uc2a4\ud15c\uacfc \uc11c\ube44\uc2a4 \ub0b4\uc5d0\uc11c\ub9cc \ud65c\uc131\ud654 \ub418\uc5b4 \uc788\uc2b5\ub2c8\ub2e4. \ubaa8\ub4e0 \ud504\ub85c\uadf8\ub7a8\uc5d0\uc11c \uc2e4\ud589\ub418\ub3c4\ub85d \ubcc0\uacbd\ud558\uae30 \uc704\ud574\uc11c\ub294 “\uc2dc\uc2a4\ud15c \ub4f1\ub85d \uc815\ubcf4-\uace0\uae09 \ud0ed-\uc131\ub2a5 \uc124\uc815-\ub370\uc774\ud0c0 \uc2e4\ud589 \ubc29\uc9c0(DEP) \ud0ed” \uc5d0\uc11c “\ub370\uc774\ud0c0 \uc2e4\ud589 \ubc29\uc9c0(DEP)\ub97c …. \ubaa8\ub4e0 \ud504\ub85c\uadf8\ub7a8 \ubc0f \uc11c\ube44\uc2a4\uc5d0\uc11c \uc0ac\uc6a9”\uc744 \uc120\ud0dd\ud558\uba74\ub429\ub2c8\ub2e4. \ud504\ub85c\uadf8\ub7a8\uc5d0 \ub530\ub77c\uc11c \uc608\uc678\ub97c \ub4f1\ub85d\ud560\uc218\ub3c4 \uc788\uc2b5\ub2c8\ub2e4. \uc61b\ub0a0\uc5d0 \ucd5c\uc801\ud654\uac00 \uacfc\ud558\uac8c(?) \ub41c \ud504\ub85c\uadf8\ub7a8\uc740 \uc608\uc678\ub97c \ub4f1\ub85d\ud574\uc57c \ub3d9\uc791\ub418\ub294 \ud504\ub85c\uadf8\ub7a8\uc774 \uc788\ub2e4\uace0 \ud558\ub294\uad70\uc694.<\/p>\n

VMware, Parallels, Virtual PC\ub4f1\uc758 Virtualization \uae30\uc220\uc744 \uc774\uc6a9\ud558\uc5ec, Sandbox <\/strong>\uc548\uc5d0\uc11c \uc880\ub354 \uc548\uc804\ud558\uac8c \uc11c\ud551\ud560\uc218 \uc788\ub294 \ubc29\ubc95\ub3c4 \uc788\uc9c0\ub9cc, \uc138\ud305\ud558\uae30\ub3c4 \ud798\ub4e4\uace0 \ubb34\uac81\uc2b5\ub2c8\ub2e4. \ube44\ub85d \uc250\uc5b4\uc6e8\uc5b4\uc9c0\ub9cc Sandboxie<\/a><\/span>\ub77c\ub294 \ud504\ub85c\uadf8\ub7a8\uc744 \ud1b5\ud558\uc5ec IE\ub098 \ud544\uc694\ud55c \uc784\uc758\uc758 \ud504\ub85c\uadf8\ub7a8\uc744 Sandbox \ub0b4\uc5d0\uc11c \uc2e4\ud589\ud560\uc218 \uc788\uc2b5\ub2c8\ub2e4. \ub77c\uc774\uc13c\uc2a4\ub294 30\uc77c\uac04 \uc0ac\uc6a9 \uac00\ub2a5\ud558\uba70 \ub4f1\ub85d\ube44\ub3c4 \uadf8\ub9ac \ube44\uc2f8\uc9c0\ub294 \uc54a\uc2b5\ub2c8\ub2e4. \uadf8\ub9ac\uace0 \uc544\uc9c1 30\uc77c\uc774 \uc9c0\ub098\uc9c0 \uc54a\uc558\uc9c0\ub9cc \ubcc4\ub2e4\ub978 \uc81c\uc57d\uc740 \uc5c6\ub294\uac70 \uac19\uc2b5\ub2c8\ub2e4. Sandbox\uc5d0\uc11c \uc2e4\ud589\ub420\ub54c\ub294 \uc6d0\ub798 \ud558\ub4dc\ub514\uc2a4\ud06c\uc5d0 \uc4f8\uc218 \uc5c6\uae30\ub54c\ubb38\uc5d0, \uc545\uc758\uc801\uc778 \ucf54\ub4dc\uac00 \uc2e4\ud589\ub418\ub354\ub77c\ub3c4 Sandbox \ub0b4\uc758 \ub4dc\ub77c\uc774\ube0c\ub9cc \uc601\ud5a5\uc744 \uc904\uc218\uc788\uc2b5\ub2c8\ub2e4.<\/p>\n

\uc704\uc5d0 \uc124\uba85\ud55c \ubc29\ubc95\uc73c\ub85c \uc5b4\ub290\uc815\ub3c4 \uacf5\uaca9\uc740 \ub9c9\uc744\uc218 \uc788\uc2b5\ub2c8\ub2e4. “IE \ub300\uc2e0 XX \ube0c\ub77c\uc6b0\uc800\ub97c \uc4f0\uba74 \uc548\uc804\ud558\ub2e4”\ub77c\ub294\uac74 \uadf8\ub0e5 \uc120\uc804\ubb38\uad6c \uc815\ub3c4\ub9cc \ub420\uc218 \uc788\uace0, \uc2e4\uc9c8\uc801\uc73c\ub85c \uc548\uc804\ud55c \uc11c\ud551\uc744 \ud558\uae30 \uc704\ud574\uc11c\ub294 \uc880\ub354 \uadfc\ubcf8\uc801\uc778 \uc811\uadfc \ubc29\ubc95\uc774 \ud544\uc694\ud560\uac83 \uac19\uc2b5\ub2c8\ub2e4. \uc704\uc5d0\uc11c \uc5b8\uae09\ud55c XSS \uacf5\uaca9 \ub370\ubaa8\ub294 \uc815\ub9d0 \ucda9\uaca9\uc801\uc774\uc5c8\uc2b5\ub2c8\ub2e4. \ub370\ubaa8\uc5d0\uc11c \ubcf4\uc5ec\uc9c4 \uacf5\uaca9\ub4e4\uc740 \uc704\uc5d0\uc11c \uc598\uae30\ud55c \uacf5\uaca9\ubc29\uc9c0 \ubc29\ubc95\uc73c\ub85c\ub294 \ubaa8\ub450 \ud574\uacb0\ub418\uc9c0 \uc54a\uc2b5\ub2c8\ub2e4.<\/p>\n

\uc6f9 \ud074\ub77c\uc774\uc5b8\ud2b8\ucabd\uc758 \ubcf4\uc548 \ubd84\uc57c\uac00 \ud604\uc7ac\uae4c\uc9c0\ubcf4\ub2e4 \uc55e\uc73c\ub85c \ud6e8\uc52c \ub354 \ub9ce\uc740 \uc774\uc288\uac00 \ubc1c\uc0dd\ud560 \uac83\uc774\uace0, \ub9ce\uc740 \uacf5\uaca9\uc774 \uc2dc\ub3c4\ub420\uac83\uc774\ub77c \uc0dd\uac01\ud569\ub2c8\ub2e4. \uc55e\uc73c\ub85c \uc5b4\ub5a4 \ud574\uacb0\ucc45\uc774 \ub098\uc62c\uc9c0 \uc9c0\ucf1c\ubd10\uc57c\uaca0\ub124\uc694. \uc9c0\uae08\uc73c\ub85c\uc11c\ub294 \ubcf4\uc548 \uc804\ubb38\uac00\ub4e4 \ubcf4\ub2e4 \ud06c\ub798\ucee4\ub4e4\uc774 \ud55c\ubc1c \uc55e\uc11c\uc788\ub294 \ub290\ub08c\uc785\ub2c8\ub2e4.<\/p>\n<\/div>\n","protected":false},"excerpt":{"rendered":"

\uc5bc\ub9c8\uc804 \ubc1c\uc0dd\ud55c VGXvgx.dll exploit\ub098 XSS \ub370\ubaa8\ub97c \ubcf4\uba74 \uc778\ud130\ub137 \uc11c\ud551\ud558\uae30 \ubb34\uc11c\uc6cc\uc9c0\ub124\uc694. IE\ub3c4 \ubb38\uc81c\uc9c0\ub9cc FireFox\ub3c4 \ubcf4\uc548\ubc84\uadf8\uac00 \ub9ce\uc774 \ubc1c\uacac\ub418\uace0 \uc788\uc2b5\ub2c8\ub2e4. FireFox\uac00 \uc548\uc804\ud558\ub2e4\uace0 \ud558\uace0, \uc5ec\ub7ec\uac00\uc9c0 \ucd94\uac00 \uae30\ub2a5\ub4e4\uc744 \ubaa8\ub4c8(addon)\uc744 \ud1b5\ud558\uc5ec \uc124\uce58\ud560\uc218 \uc788\uc9c0\ub9cc… \uc544\uc9c1 \ud55c\uad6d \uc0ac\uc774\ud2b8\uc5d0\uc11c\ub294 \uc81c\uc57d\uc774 \ub9ce\uc2b5\ub2c8\ub2e4. IE \uc678\uc758 \ube0c\ub77c\uc6b0\uc800\uc5d0\uc11c\ub294 \uc815\uc0c1\uc801\uc73c\ub85c \ubcf4\uc774\uc9c0 \uc54a\ub294 \uc0ac\uc774\ud2b8\ub4e4\uc774 \uc544\uc9c1 \ub9ce\uc2b5\ub2c8\ub2e4. FireFox\uc5d0 IE Tab\uc744 \uc124\uce58\ud558\uc5ec \uc815\uc0c1\uc801\uc73c\ub85c \ubcf4\uc774\uc9c0 \uc54a\ub294 \ud398\uc774\uc9c0\ub97c \ubcfc\uc218\ub294 \uc788\uc9c0\ub9cc, IE\ub85c \ubcfc\ub54c \ub9c8\uc6b0\uc2a4 \uc81c\uc2a4\ucc98\ub4f1\uc774 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[17],"tags":[235],"_links":{"self":[{"href":"https:\/\/mix1009.net\/index.php?rest_route=\/wp\/v2\/posts\/12"}],"collection":[{"href":"https:\/\/mix1009.net\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/mix1009.net\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/mix1009.net\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/mix1009.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=12"}],"version-history":[{"count":0,"href":"https:\/\/mix1009.net\/index.php?rest_route=\/wp\/v2\/posts\/12\/revisions"}],"wp:attachment":[{"href":"https:\/\/mix1009.net\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=12"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/mix1009.net\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=12"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/mix1009.net\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=12"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}