设为首页收藏本站 开启辅助访问
搜索
    查看: 892|回复: 0

    【高危预警】微软搜索远程代码执行漏洞

    [复制链接]
    发表于 2017-8-9 14:33:59 | 显示全部楼层 |阅读模式
    [CVE-ID]:CVE-2017-8620
    [漏洞类型]:远程代码执行漏洞
    [危害等级]:高危
    [影响版本]:
            Microsoft Windows 10 for 32-bit Systems
            Microsoft Windows 10 for x64-based Systems
            Microsoft Windows 10 Version 1511 for 32-bit Systems
            Microsoft Windows 10 Version 1511 for x64-based Systems
            Microsoft Windows 10 Version 1607 for 32-bit Systems
            Microsoft Windows 10 Version 1607 for x64-based Systems
            Microsoft Windows 10 Version 1703 for 32-bit Systems
            Microsoft Windows 10 Version 1703 for x64-based Systems
            Microsoft Windows 7 for 32-bit Systems Service Pack 1
            Microsoft Windows 7 for x64-based Systems Service Pack 1
            Microsoft Windows 8.1 for 32-bit systems
            Microsoft Windows 8.1 for x64-based systems
            Microsoft Windows RT 8.1
            Microsoft Windows Server 2008 for 32-bit Systems Service Pack 2
            Microsoft Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
            Microsoft Windows Server 2008 for Itanium-Based Systems Service Pack 2
            Microsoft Windows Server 2008 for x64-based Systems Service Pack 2
            Microsoft Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
            Microsoft Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
            Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1
            Microsoft Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
            Microsoft Windows Server 2012
            Microsoft Windows Server 2012 (Server Core installation)
            Microsoft Windows Server 2012 R2
            Microsoft Windows Server 2012 R2 (Server Core installation)
            Microsoft Windows Server 2016
            Microsoft Windows Server 2016 (Server Core installation)
    [漏洞危害]:
    Windows 搜索在内存中处理对象的方式存在安全问题,当攻击者向 windows 搜索服务发送特制的消息时会触发该漏洞(可以通过SMB服务),成功触发该漏洞可以控制受影响的系统执行任意代码。
    [补丁状态]:
    微软已经下发补丁,目前暂时没有漏洞利用方法发布,请及时更新补丁:https://portal.msrc.microsoft.co ... isory/CVE-2017-8620

    来源:
    https://portal.msrc.microsoft.co ... isory/CVE-2017-8620
    http://toutiao.secjia.com/micros ... ch-notification-aug

    回复

    使用道具 举报

    您需要登录后才可以回帖 登录 | 立即注册

    本版积分规则

    QQ|小黑屋|Archiver|手机版|安全狗论坛-汇聚安全的力量 ( 闽ICP备14014139号-1  

    GMT+8, 2020-1-22 08:14 , Processed in 0.084205 second(s), 21 queries .

    Powered by Discuz! X3.2

    © 2001-2013 Comsenz Inc.

    快速回复 返回顶部 返回列表