:: 뉴스
아파치 톰캣 AJP 프로토콜에 '고스트캣(GhostCat)' 취약점 발견돼
https://www.dailysecu.com/news/articleView.html?idxno=106713
:: 참고
Ghostcat is a high-risk file read / include vulnerability in Tomcat
https://www.chaitin.cn/en/ghostcat
Apache Tomcat AJP 취약점 보안 조치 권고
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35279
https://www.krcert.or.kr/data/secNoticeView.do?bulletin_writing_sequence=35292
Ghostcat : Tomcat-Ajp 프로토콜 취약점 (cve-2020-1938) 주의!
https://blog.alyac.co.kr/2772
https://blog.alyac.co.kr/2772
Tomcat-AJP 취약점 분석 및 대응방안 : Ghostcat(CVE-2020-1938)
http://www.igloosec.co.kr/BLOG_Tomcat-AJP%20%EC%B7%A8%EC%95%BD%EC%A0%90%20%EB%B6%84%EC%84%9D%20%EB%B0%8F%20%EB%8C%80%EC%9D%91%EB%B0%A9%EC%95%88%20%0B:%20Ghostcat(CVE-2020-1938)
Busting Ghostcat: An Analysis of the Apache Tomcat Vulnerability (CVE-2020-1938 and CNVD-2020-10487)
https://blog.trendmicro.com/trendlabs-security-intelligence/busting-ghostcat-an-analysis-of-the-apache-tomcat-vulnerability-cve-2020-1938-and-cnvd-2020-10487/
[Tomcat] (Critical) Apache Tomcat 취약점 CVE-2020-1938 (Ghostcat)
https://nirsa.tistory.com/150
[Tomcat] (Critical) Apache Tomcat 취약점 CVE-2020-1938 (Ghostcat)
https://nirsa.tistory.com/150
:: 조치
[Tomcat] AJP Protocol "GhostCat" 취약점 발견 - CVE-2020-1938
https://blog.naver.com/ncloud24/221835089435
https://blog.naver.com/ncloud24/221835089435
:: 장애처리
:: 탐지
[CVE-2020-1938] Ghostcat Vulnerability
댓글 없음:
댓글 쓰기