欢迎您来到腾讯云!积分商城

腾讯云腾讯云论坛

 找回密码
 立即注册
忘了密码?

扫一扫,访问微社区

快捷导航
搜索
查看: 1287|回复: 0

[安全通知] 关于微软2018年3月安全补丁更新说明

[复制链接]

217

主题

0

好友

1万

积分

腾讯云论坛管理组

Rank: 20Rank: 20

云币
33580
威望
13853
发表于 2018-3-14 20:13:05 |显示全部楼层
尊敬的腾讯云客户:
  您好,近日,腾讯云安全中心监测到微软近期发布了3月安全补丁更新,共披露了 74个安全漏洞,其中包含14个严重漏洞,攻击者可利用该漏洞实施权限提升、远程代码执行以及DoS等攻击。
       为避免您的业务受影响,腾讯云安全中心建议您及时开展安全自查,如在受影响范围,请您及时进行更新修复,避免被外部攻击者入侵。

【漏洞详情】
   微软近期发布了3月安全补丁更新,共披露了包含Microsoft Windows, Microsoft Internet Explorer, Microsoft Edge, Microsoft SharePoint, Microsoft Exchange, Microsoft Office, and Microsoft ASP.NET在被的多个安全漏洞,其中需要重点关注的漏洞如下:
1)
Windows CredSSP 远程代码执行漏洞(CVE-2018-0886):
    CredSSP是为其他应用程序处理验证请求的验证提供程序,任何依赖CredSSP进行身份验证的应用程序都可能容易受到此类攻击,该漏洞系凭证安全支持提供程序协议(CredSSP)中存在远程执行代码漏洞,攻击者利用此漏洞可中继用户凭据并使用它们在目标系统上执行代码。目前利用该漏洞需要实施中间人攻击,即攻击者需要运行特制应用程序并针对远程桌面协议会话执行中间人攻击,才能成功完成一次攻击。
2)Windows Shell远程执行代码漏洞(CVE-2018-0883):
    攻击者通过诱导用户打开电子邮件、消息中或其他方式包含的特制文件,可以达到亦当前用户身份执行任意代码的目的。
    漏洞详情列表如下  
漏洞编号
漏洞
CVSS评分
CVE-2018-0787
Microsoft ASP.NET Core Privilege Escalation Vulnerability
5.4
CVE-2018-0808
Microsoft ASP.NET Core Denial of Service Vulnerability
7.5
CVE-2018-0811
Microsoft Windows Kernel Information Disclosure Vulnerability
5.5
CVE-2018-0813
Microsoft Windows Kernel Information Disclosure Vulnerability
5.5
CVE-2018-0814
Microsoft Windows Kernel Information Disclosure Vulnerability
5.5
CVE-2018-0815
Microsoft Windows Graphics Privilege Escalation Vulnerability
7
CVE-2018-0816
Microsoft Windows Graphics Privilege Escalation Vulnerability
7
CVE-2018-0817
Microsoft Windows Graphics Privilege Escalation Vulnerability
7
CVE-2018-0868
Microsoft Windows Installer Privilege Escalation Vulnerability
7.4
CVE-2018-0872
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0873
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0874
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0875
Microsoft ASP.NET Core Denial of Service Vulnerability
7.5
CVE-2018-0876
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0877
Microsoft Windows Desktop Bridge Privilege Escalation Vulnerability
7
CVE-2018-0878
Microsoft Windows Remote Assistance Information Disclosure Vulnerability
3.1
CVE-2018-0879
Microsoft Edge Information Disclosure Vulnerability
4.3
CVE-2018-0880
Microsoft Windows Desktop Bridge Privilege Escalation Vulnerability
7
CVE-2018-0881
Microsoft Windows Video Control Privilege Escalation Vulnerability
7
CVE-2018-0882
Microsoft Windows Desktop Bridge Privilege Escalation Vulnerability
7
CVE-2018-0883
Microsoft Windows Shell Arbitrary Code Execution Vulnerability
5
CVE-2018-0884
Microsoft Windows Security Feature Bypass Vulnerability
5.3
CVE-2018-0885
Microsoft Windows Hyper-V Denial of Service Vulnerability
5.8
CVE-2018-0886
Microsoft Windows Arbitrary Code Execution Vulnerability
7.1
CVE-2018-0888
Microsoft Windows Hyper-V Information Disclosure Vulnerability
7.2
CVE-2018-0889
Microsoft Internet Explorer Scripting Engine Memory Corruption Vulnerability
7.5
CVE-2018-0891
Microsoft Edge and Internet Explorer Information Disclosure Vulnerability
7.5
CVE-2018-0893
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0894
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0895
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0896
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0897
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0898
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0899
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0900
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0901
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0902
Microsoft Windows Kernel Driver Security Feature Bypass Vulnerability
5.3
CVE-2018-0903
Microsoft Access Arbitrary Code Execution Vulnerability
7.5
CVE-2018-0904
Microsoft Windows Kernel Information Disclosure Vulnerability
4.7
CVE-2018-0907
Microsoft Office Excel Security Bypass Vulnerability
4.4
CVE-2018-0909
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0910
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0911
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0912
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0913
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0914
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0915
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0916
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0917
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0919
Microsoft Office Information Disclosure Vulnerability
5.5
CVE-2018-0921
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0922
Microsoft Office Memory Corruption Vulnerability
4.2
CVE-2018-0923
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0924
Microsoft Exchange Information Disclosure Vulnerability
3.1
CVE-2018-0925
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0926
Microsoft Windows Kernel Information Disclosure Vulnerability
5.5
CVE-2018-0927
Microsoft Edge and Internet Explorer Information Disclosure Vulnerability
4.3
CVE-2018-0929
Microsoft Internet Explorer Information Disclosure Vulnerability
4.3
CVE-2018-0930
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0931
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0932
Microsoft Internet Explorer Information Disclosure Vulnerability
4.3
CVE-2018-0933
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0934
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0935
Microsoft Internet Explorer Memory Corruption Vulnerability
7.5
CVE-2018-0936
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0937
Microsoft Edge Scripting Engine Memory Corruption Vulnerability
4.2
CVE-2018-0939
Microsoft Edge Information Disclosure Vulnerability
4.3
CVE-2018-0940
Microsoft Exchange Security Bypass Vulnerability
5.4
CVE-2018-0941
Microsoft Exchange Information Disclosure Vulnerability
4.3
CVE-2018-0942
Microsoft Internet Explorer Security Bypass Vulnerability
3
CVE-2018-0944
Microsoft SharePoint Cross-Site Scripting Vulnerability
5.4
CVE-2018-0947
Microsoft SharePoint Privilege Escalation Vulnerability
5.4
CVE-2018-0977
Microsoft Windows Win32k Privilege Escalation Vulnerability
7
CVE-2018-0983
Microsoft Windows Storage Services Privilege Escalation Vulnerability
7

【风险等级】
  高风险

【漏洞风险】
   代码执行、DoS、权限提升、安全绕过以及信息泄露

【影响版本】
   目前已知受影响微软产品如下:
    Microsoft Windows
    Microsoft Internet Explorer
    Microsoft Edge
    Microsoft SharePoint
    Microsoft Exchange
    Microsoft Office
    Microsoft ASP.NET

【修复建议】
   目前微软官方均已发布漏洞修复更新,腾讯云安全团队建议您:
   1)不要打开来历不明的文件或者链接,避免被被攻击者利用在机器上执行恶意代码;
   2)打开Windows Update更新功能,点击“检查更新”,根据业务情况下载安装相应的安全补丁;
   3)补丁更新完毕后,重启系统生效,并观察系统及业务运行状态;

   您也可以直接通过微软官方链接进行下载安装,补丁下载地址:https://portal.msrc.microsoft.com/en-us/security-guidance
   【备注】:建议您在安装补丁前做好数据备份工作,避免出现意外。

【漏洞参考】
  1)官方通告:https://portal.msrc.microsoft.com/en-us/security-guidance
  2)漏洞细节:https://support.microsoft.com/zh-cn/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018



2017/3/14
您需要登录后才可以回帖 登录 | 立即注册
您需要登录后才可以发帖 QQ登录

联系我们|腾讯云平台|积分商城|腾讯云官方论坛    

GMT+8, 2018-9-25 16:06 , Processed in 1.167884 second(s), 29 queries .

Powered by Discuz! X2.5

© 2001-2012 Comsenz Inc.

回顶部