欢迎您来到腾讯云!积分商城

腾讯云腾讯云论坛

 找回密码
 立即注册
忘了密码?

扫一扫,访问微社区

快捷导航
搜索
查看: 595|回复: 0

[安全通知] 关于微软2018年9月安全补丁更新说明

[复制链接]

219

主题

0

好友

1万

积分

腾讯云论坛管理组

Rank: 20Rank: 20

云币
33930
威望
13983
发表于 2018-9-12 12:38:33 |显示全部楼层
尊敬的腾讯云客户:
    您好!近日,腾讯云安全中心监测到微软近期发布了 9 月安全补丁更新,共披露了 61 个安全漏洞,其中包含 17 个严重漏洞,攻击者可利用漏洞实施权限提升、远程代码执行等攻击。
       为避免您的业务受影响,腾讯云安全中心建议您及时开展安全自查,如在受影响范围,请您及时进行更新修复,避免被外部攻击者入侵。

【漏洞详情】
严重漏洞(17个)
CVE-2018-0965 - Windows Hyper-V hypervisor remote code execution vulnerability
CVE-2018-8367 - Chakra scripting engine remote code execution vulnerability
CVE-2018-8420 - Microsoft XML Core Services MSXML remote code execution vulnerability
CVE-2018-8461 - Internet Explorer remote code execution vulnerability
CVE-2018-8475 - Windows OS remote code execution vulnerability
CVE-2018-8332 - Windows font library remote code execution vulnerability
CVE-2018-8391 - Chakra scripting engine remote code execution vulnerability
CVE-2018-8439 - Windows Hyper-V hypervisor remote code execution vulnerability
CVE-2018-8447 - Internet Explorer remote code execution vulnerability
CVE-2018-8456 - Chakra scripting engine remote code execution vulnerability
CVE-2018-8459 - Chakra scripting engine remote code execution vulnerability
CVE-2018-8457 - Microsoft web browsers' scripting engines remote code execution vulnerability
CVE-2018-8464 - Microsoft Edge's PDF reader remote code execution vulnerability
CVE-2018-8465 - Chakra scripting engine remote code execution vulnerability
CVE-2018-8466 - Chakra scripting engine remote code execution vulnerability
CVE-2018-8467 - Chakra scripting engine remote code execution vulnerability
CVE-2018-8421 — .NET Framework Remote Code Execution Vulnerability

重要漏洞(43个):
CVE-2018-8354 - Microsoft Edge web browser scripting engine remote code execution vulnerability
CVE-2018-8392 - Microsoft Jet Database Engine buffer overflow vulnerability
CVE-2018-8393 - Microsoft Jet Database Engine buffer overflow vulnerability
CVE-2018-8430 - Microsoft Word 2013 and 2016 remote code execution vulnerability
CVE-2018-8447 - Advanced Local Procedure Call (ALPC) elevation of privilege vulnerability
CVE-2018-8331 - Microsoft Excel remote code execution vulnerability
CVE-2018-8315 - Microsoft's scripting engine information disclosure vulnerability
CVE-2018-8335 - Microsoft Server Block Message (SMB) denial-of-service vulnerability
CVE-2018-8425 - Microsoft Edge web browser spoofing vulnerability
CVE-2018-8440 - Advanced Local Procedure Call (ALPC) elevation of privilege vulnerability
CVE-2018-8271 - Windows Information Disclosure Vulnerability
CVE-2018-8336 - Windows Kernel Information Disclosure Vulnerability
CVE-2018-8337 - Windows Subsystem for Linux Security Feature Bypass Vulnerability
CVE-2018-8366 - Microsoft Edge Information Disclosure Vulnerability
CVE-2018-8409 - ASP.NET Core Denial of Service
CVE-2018-8410 - Windows Registry Elevation of Privilege Vulnerability
CVE-2018-8424 - Windows GDI Information Disclosure Vulnerability
CVE-2018-8426 - Microsoft Office SharePoint XSS Vulnerability
CVE-2018-8428 - Microsoft SharePoint Elevation of Privilege Vulnerability
CVE-2018-8429 - Microsoft Excel Information Disclosure Vulnerability
CVE-2018-8431 - Microsoft SharePoint Elevation of Privilege Vulnerability
CVE-2018-8433 - Microsoft Graphics Component Information Disclosure Vulnerability
CVE-2018-8434 - Windows Hyper-V Information Disclosure Vulnerability
CVE-2018-8435 - Windows Hyper-V Security Feature Bypass Vulnerability
CVE-2018-8436 - Windows Hyper-V Denial of Service Vulnerability
CVE-2018-8437 - Windows Hyper-V Denial of Service Vulnerability
CVE-2018-8438 - Windows Denial of Service Vulnerability
CVE-2018-8441 - Windows ALPC Elevation of Privilege Vulnerability
CVE-2018-8442 - Windows Kernel Information Disclosure Vulnerability
CVE-2018-8443 - Windows Kernel Information Disclosure Vulnerability
CVE-2018-8444 - Windows SMB Information Disclosure Vulnerability
CVE-2018-8445 - Windows Kernel Information Disclosure Vulnerability
CVE-2018-8446 - Windows Kernel Information Disclosure Vulnerability
CVE-2018-8449 - Device Guard Security Feature Bypass Vulnerability
CVE-2018-8452 - Scripting Engine Information Disclosure Vulnerability
CVE-2018-8455 - Windows Kernel Elevation of Privilege Vulnerability
CVE-2018-8462 - DirectX Graphics Kernel Elevation of Privilege Vulnerability
CVE-2018-8463 - Microsoft Edge Elevation of Privilege Vulnerability
CVE-2018-8468 - Windows Elevation of Privilege Vulnerability
CVE-2018-8469 - Microsoft Edge Elevation of Privilege Vulnerability
CVE-2018-8470 - Internet Explorer Security Feature Bypass Vulnerability
CVE-2018-5391 - Windows Denial of Service Vulnerability
CVE-2018-15967 - Adobe Flash Information Disclosure Vulnerability

【风险等级】
   高风险

【漏洞风险】
    代码执行、权限提升、安全绕过以及信息泄露;

【影响版本】
   目前已知受影响产品如下:
   Microsoft Edge
   Internet Explorer
   Chakra Scripting Engine
   Windows DNSAPI
   Microsoft Office
   Windows Kernel

【修复建议】
  目前微软官方均已发布漏洞修复更新,腾讯云安全团队建议您:
   1)不要打开来历不明的文件或者链接,避免被被攻击者利用在机器上执行恶意代码;
   2)打开Windows Update更新功能,点击“检查更新”,根据业务情况开展评估,下载安装相应的安全补丁;
   3)补丁更新完毕后,重启系统生效,并观察系统及业务运行状态;
   您也可以直接通过微软官方链接进行下载安装,补丁下载地址:
https://portal.msrc.microsoft.com/en-us/security-guidance
  【备注】建议您在安装补丁前做好数据备份工作,避免出现意外。

【漏洞参考】
  1)官方通告:https://portal.msrc.microsoft.com/en-us/security-guidance
  2)外部分析:
https://blog.talosintelligence.com/2018/09/ms-tuesday.html


2018/9/12
您需要登录后才可以回帖 登录 | 立即注册
您需要登录后才可以发帖 QQ登录

联系我们|腾讯云平台|积分商城|腾讯云官方论坛    

GMT+8, 2018-11-18 08:29 , Processed in 1.171261 second(s), 30 queries .

Powered by Discuz! X2.5

© 2001-2012 Comsenz Inc.

回顶部