ÀÚÁÖÇÏ´ÂÁú¹®
Á¦Ç°¸Þ´º¾ó
Q&A °Ô½ÃÆÇ
ÀÚ·á½Ç
Á¦ ¸ñ
[DIR-850L] DIR-850L Ãë¾àÁ¡ ¾÷µ¥ÀÌÆ® ¾ÈÇϽóª¿ä?
¸ðµ¨¸í
DIR-850L
À̸§
µð**
¿¬¶ôó
XXX-XXXX-XXXX
À̸ÞÀÏ
XXXXX@
ÀÎÅÍ³Ý Á¾·ù
SKB ±¤·£
¾È³çÇϼ¼¿ä. ±èÅÂȯ °í°´´Ô, D-link °í°´Áö¿ø½ÇÀÔ´Ï´Ù.
WPA2 º¸¾È ÆÐÄ¡°¡ 2018³â ÃÊ¿¡ ÀÌ·ç¾îÁøÀÌÈÄ ÇöÀç±îÁö °í°´Áö¿ø½Ç¿¡¼ ¿©·¯ °øÀ¯±â·Î °è¼Ó »ç¿ëÀ» Çغ¸¾ÒÀ¸³ª ÀÎÅÍ³Ý ²÷±è Çö»óÀº ¹ß»ýµÇÁö ¾Ê°í ÀÖÀ¸¸ç ÀϺΠDIR-850L »ç¿ëÀ¯ÀúºÐµéÀÌ ²÷±è ¹®Á¦·Î Á¦Ç°À» Åùè·Î ASº¸³ÂÀ¸³ª ¸¶Âù°¡Áö·Î ÀÌ»ó¾øÀÌ À¯.¹«¼± ÀÎÅÍ³Ý Àß µË´Ï´Ù.
±×·¡¼ ¼ÒÇÁÆ®¿þ¾îÀûÀÎ ¹®Á¦Á¡ÀÌ ±¸ÇöÀÌ ¾ÈµÇ¾î ÇöÀç Æß¿þ¾î¿¡¼ ¼öÁ¤ÀÌ ¾ÈµÇ°í ÀÖ´Â »óÅÂÀÔ´Ï´Ù. ÇØ´ç WPA º¸¾È ¹®Á¦°¡ °øÀ¯±â¿ÜºÎ¿¡¼ ħÀÔÇÏ´Â ¹®Á¦°¡ ¾Æ´Ñ °øÀ¯±â¸¦ Á÷Á¢ ¿¬°áÇÏ¿© »ç¿ëÇÏ´Â ³»ºÎ¿¡¼ÀÇ ÇØÅ·À§ÇèÀ̱⠶§¹®¿¡ °¡Á¤¿ë¿¡¼ »ç¿ëÇϽñ⿡´Â Å©°Ô ¹«¸®°¡ ¾ø´Ù°í ÆÇ´ÜÇÏ¿© Æß¿þ¾î¸¦ 1.15KRB07 ¹öÀü »ç¿ëÀ» ¾È³»Çصå·È´ø ³»¿ëÀÔ´Ï´Ù.
¹®ÀÇÇϽŠÇØ¿Ü Æß¿þ¾î º¸¾È ÆÐÄ¡´Â °¢ ±¹°¡¸¶´Ù ÇØ´ç ÀÎÅÍ³Ý È¯°æ¿¡ ¸Â°Ô ±â´ÉÀÌ ´Ù¸£´Ù º¸´Ï Æß¿þ¾î ¹öÀüÀÌ ´Ù¸¨´Ï´Ù.
1.21B08_icji_WW Æß¿þ¾î º¸¾È ÆÐÄ¡ ³»¿ëÀº ÀÌ¹Ì ±âÁ¸¿¡ µð¸µÅ© ÄÚ¸®¾Æ Æß¿þ¾î 1.20Æß¿þ¾î ¹öÀü¿¡ Æ÷ÇԵǾî ÀÖ´Â ³»¿ëÀÔ´Ï´Ù.
WPA2 º¸¾È ¹®Á¦¿¡ µû¸¥ ¹®Á¦´Â ±¹³»Æß¿þ¾î(KR)¹öÀü¿¡¼ ¸ÕÀú ¼öÁ¤ÀÌ µÇ¾ú´ø ³»¿ëÀÌ°í, ¿ùµå¿ÍÀ̵å(WW) ¹öÀüÀº ±× ÀÌÈÄ¿¡ ¼öÁ¤µÈ ³»¿ëÀ̶ó°í º¸½Ã¸é µË´Ï´Ù. ±¹³»(KR)¹öÀü¿Ü¿¡ °¢ ±¹°¡¸¶´Ù Æß¿þ¾î¹× ÀÏÁ¤ÀÌ ´Ù¸¦¼ö ÀÖ½À´Ï´Ù.
ÇØ¿ÜÆß¿þ¾î ¹öÀü¿¡´Â Çѱ¹Æß¿þ¾î(KR) ¹öÀü¿¡¼ »ç¿ë°¡´ÉÇÑ ±â´ÉÀÌ (IPTV Àü¿ëÆ÷Æ®,SDMZ)ÀÌ Á¦°øµÇÁö ¾ÊÀ»¼ö ÀÖÀ¸¸ç, ±¹³» ÀÎÅÍ³Ý È¯°æ¿¡ ÃÖÀûÈ µÇ¾î ÀÖÁö ¾ÊÀ¸´Ï ÀÌÁ¡ Âü°íÇϽñ⠹ٶø´Ï´Ù.
°¨»çÇÕ´Ï´Ù.
=============================================================================================================================================
17³â ÈĹݿ¡ µð¸µÅ© Ãë¾àÁ¡ ¹®Á¦ ÅÍÁö°í ÇÑÂüµÚ¿¡ º¸¾ÈÆÐÄ¡¸¦ ÇßÁÒ
Çѱ¹Àº 18³â 1¿ùÀÌ µÇ¼¾ß º¸¾ÈÆÐÄ¡¸¦ ÇÏ°í¿ä
¹®Á¦´Â ÀÌ ÆÐÄ¡¸¦ ±âÁ¡À¸·Î 1.20kr->1.21kr->1.22kr ¾î´À Æß¿þ¸¦ »ç¿ëÇϵç
Áö¼ÓÀûÀ¸·Î ÀÎÅÍ³Ý ²÷±è À̽´°¡ °è¼Ó ¹ß»ýÇϴµ¥µµ µð¸µÅ© ÄÚ¸®¾Æ¿¡¼´Â
ÀÚ»çÅ×½ºÆ®¿¡¼ ¾Æ¹« ¹®Á¦°¡ ¹ß°ßµÇÁö ¾Ê´Â´Ù°í À̾߱âÇÏ°í
´õ Ȳ´çÇÑ°Ç °è¼Ó ¹®Á¦°¡ ¹ß»ýÇÏ¸é º¸¾ÈÆÐÄ¡ ÀÌÀüÀÇ Æß¿þ¾î·Î ´Ù¿î±×·¹À̵带 Ç϶ó°í ÇÕ´Ï´Ù.
ÀÌ°Ô Á¤»óÀûÀÎ ´ëÀÀÀÎÁö Àǹ®ÀÔ´Ï´Ù.
Á¦°¡ ¿©·¯°¡Áö ½ÇÇèÀ» Çغ¸´Ï Ãë¾àÁ¡ÆÐÄ¡ÀÌÈÄ °£ÇæÀûÀ¸·Î ²÷±â´Â°Ç Çѱ¹Æß¿þ¾î°¡ ¹®Á¦ ¾Æ´Ò±î ½Í½À´Ï´Ù.
¿Ö³ÄÇϸé
2018³â 11¿ù 6ÀÏ¿¡ °ø°³µÈ ¹Ì±¹ µð¸µÅ© °ø½ÄÆÐÄ¡ 1.21B07_i9d9_WW ¸¦ Àû¿ëÇÏ¸é °£ÇæÀû ²÷±èÀÌ ¹ß»ýÇÏÁö ¾Ê¾Ò½À´Ï´Ù.
±×·±µ¥ ¹Ì±¹ µð¸µÅ©¿¡¼ ¾à 6ÁÖµÚ 2018³â 12¿ù 21ÀÏ¿¡ ¶Ç º¸¾ÈÆÐÄ¡(1.21B08_icji_WW)¸¦ °ø°³Çß½À´Ï´Ù.
¸±¸®Áî³ëÆ® ³»¿ëÀº Ãë¾àÁ¡ º¸¿Ï
DIR-850L Firmware Patch Notes
Firmware: 1.21B08_icji_WW
Hardware: Ax
Date: December 21, 2018
Report:
A research report to D-Link has reported multiple routers (DIR-850L A1/B1, DIR-822 C1 and DIR-880L A1) with security vulnerabilities: Authenticated bypass and Authenticated RCE.
3rd Party Researcher: Henry Huang (happyholic1203 at gmail dot com)
Problems Fixed:
1. Authentication bypass
2. Authenticated RCE
ÀÌ¿¡ ´ëÇØ µð¸µÅ© ÄÚ¸®¾Æ´Â
1.2018³â 1¿ù º¸¾ÈÆÐÄ¡ÀÌÈÄ ¹ß°ßµÈ Ãë¾àÁ¡¿¡ ´ëÇؼ´Â "Ãֽź¸¾ÈÆÐÄ¡°¡ ³ª¿ÔÀ½"¿¡µµ ºÒ±¸ÇÏ°í º¸¾ÈÆÐÄ¡¸¦ ¾ÈÇÏ°íÀÖÀ½
2.°£ÇæÀû ²÷±è¿¡ ´ëÇؼ´Â Ȳ´çÇÏ°Ôµµ ½É°¢ÇÑ Ãë¾àÁ¡º¸¾ÈÆÐÄ¡ ÀÌÀüÀÇ Æß¿þ¾î·Î ´Ù¿î±×·¹À̵带 ÇØ°á¹æ¹ýÀ¸·Î Á¦½ÃÇÔ
1,2¹ø¿¡ ´ëÇØ µð¸µÅ© ÄÚ¸®¾ÆÀÇ ÀÇ°ßÀ» µè°í ½Í½À´Ï´Ù.
850L°æ¿ì Ãâ½ÃÇÑÁö ¾à 6³âµÈ ¿À·¡µÈ Á¦Ç°À̶ó ´õ ÀÌ»ó ±â¾÷¿¡¼ À¯Áöº¸¼ö Áö¿øÀÌ ¾î·Æ´Ù´Â°Íµµ ÀÌÇØÇÕ´Ï´Ù.