Skip to content

Commit 037283c

Browse files
author
Sangyong Sim
committed
Translate http-request-smuggling-cve-2020-25613 (ko)
1 parent ad49497 commit 037283c

File tree

1 file changed

+20
-16
lines changed

1 file changed

+20
-16
lines changed

ko/news/_posts/2020-09-29-http-request-smuggling-cve-2020-25613.md

Lines changed: 20 additions & 16 deletions
Original file line numberDiff line numberDiff line change
@@ -1,32 +1,36 @@
11
---
22
layout: news_post
3-
title: "CVE-2020-25613: Potential HTTP Request Smuggling Vulnerability in WEBrick"
3+
title: "CVE-2020-25613: WEBrick의 잠재적인 HTTP 요청 밀수 취약점"
44
author: "mame"
5-
translator:
5+
translator: "shia"
66
date: 2020-09-29 06:30:00 +0000
77
tags: security
8-
lang: en
8+
lang: ko
99
---
1010

11-
A potential HTTP request smuggling vulnerability in WEBrick was reported. This vulnerability has been assigned the CVE idenfitifer [CVE-2020-25613](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25613). We strongly recommend upgrading the webrick gem.
11+
A potential HTTP request smuggling vulnerability in WEBrick was reported.
12+
이 취약점에 [CVE-2020-25613](http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-25613)이 할당되었습니다.
13+
webrick 젬을 업그레이드하는 것을 강력히 권장합니다.
1214

13-
## Details
15+
## 세부 내용
1416

15-
WEBrick was too tolerant against an invalid Transfer-Encoding header. This may lead to inconsistent interpretation between WEBrick and some HTTP proxy servers, which may allow the attacker to "smuggle" a request. See [CWE-444](https://cwe.mitre.org/data/definitions/444.html) in detail.
17+
WEBrick은 유효하지 않은 Transfer-Encoding 헤더에 너무 관대했습니다.
18+
이는 WEBrick과 몇몇 HTTP 프록시 서버들 사이에서 해석 불일치를 유발해 공격자가 어떤 요청을 몰래 끼워넣을 수 있도록 합니다.
19+
자세한 설명은 [CWE-444](https://cwe.mitre.org/data/definitions/444.html)를 참고하세요.
1620

17-
Please update the webrick gem to version 1.6.1 or later. You can use `gem update webrick` to update it. If you are using bundler, please add `gem "webrick", ">= 1.6.1"` to your `Gemfile`.
21+
webrick 젬을 1.6.1 이상으로 업그레이드하기 바랍니다. 업그레이드하려면 `gem update webrick` 명령을 사용하세요. 만약 번들러를 사용하고 있다면 `Gemfile``gem "webrick", ">= 1.6.1"`을 추가하세요.
1822

19-
## Affected versions
23+
## 해당 버전
2024

21-
* webrick gem 1.6.0 or prior
22-
* bundled versions of webrick in ruby 2.7.1 or prior
23-
* bundled versions of webrick in ruby 2.6.6 or prior
24-
* bundled versions of webrick in ruby 2.5.8 or prior
25+
* webrick 1.6.0 이하
26+
* 루비 2.7 버전대: 2.7.1 이하의 루비에 포함된 webrick
27+
* 루비 2.6 버전대: 2.6.6 이하의 루비에 포함된 webrick
28+
* 루비 2.5 버전대: 2.5.8 이하의 루비에 포함된 webrick
2529

26-
## Credits
30+
## 도움을 준 사람
2731

28-
Thanks to [piao](https://hackerone.com/piao) for discovering this issue.
32+
이 문제를 발견해 준 [piao](https://hackerone.com/piao)에게 감사를 표합니다.
2933

30-
## History
34+
## 수정 이력
3135

32-
* Originally published at 2020-09-29 06:30:00 (UTC)
36+
* 2020-09-29 06:30:00 (UTC) 최초 공개

0 commit comments

Comments
 (0)