记录黑客技术中优秀的内容,传播黑客文化,分享黑客技术精华

【安全通告】微软11月补丁修复112个安全问题

2020-11-12 17:24

综述

微软于本周二发布了11月安全更新补丁,修复了112个从简单的欺骗攻击到远程执行代码的安全问题。其中Critical级别漏洞17个,Important 级别漏洞93 个,Low级别漏洞2个。强烈建议所有用户尽快安装更新。

受影响产品涉及Azure DevOps、Azure Sphere、Common Log File System Driver、Microsoft Browsers、Microsoft Dynamics、Microsoft Exchange Server、Microsoft Graphics Component、Microsoft Office、Microsoft Office SharePoint、Microsoft Scripting Engine、Microsoft Teams、Microsoft Windows、Microsoft Windows Codecs Library、Visual Studio、Windows Defender、Windows Kernel、Windows NDIS、Windows Update Stack以及Windows WalletService。

Critical & Important漏洞概述

分 Critical 及Important 漏洞描述如下:

  • Windows内核本地特权提升漏洞(CVE-2020-17087) 

本月2号,Google Project Zero团队发布了一篇关于Windows cng.sys提权漏洞(CVE-2020-17087)的文章。该漏洞允许攻击者在未授权的情况下,通过诱使用户运行精心制作的恶意程序,达到权限提升的效果。当时CVE-2020-17087已经有在野利用的行为出现,并且微软官方没有发布相关补丁。

在本次更新中,该漏洞被修复。请受影响用户尽快安装补丁进行防护。

官方评级 Important,CVSS:3.0 7.8/7.2

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17087

  • Windows网络文件系统(NFS)漏洞(CVE-2020-17051/ 17056) 

CVE-2020-17051是一个存在于nfssvr.sys驱动中的远程代码执行漏洞,可导致蓝屏死机(BSOD)。

CVE-2020-17056是一个存在于nfssvr.sys驱动中的远程内核数据读取漏洞,可导致ASLR(地址空间布局随机化)被绕过。

当这两个漏洞被组合利用时,在Windows服务器上绕过漏洞缓解措施并实现远程利用的可能性大大增加。

NFS用于在Windows和Unix/Linux环境中做文件共享。

CVE-2020-17051官方评级 Critical,CVSS:3.0 9.8/8.5

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CVE-2020-17056官方评级 Important,CVSS:3.0 5.5/4.8

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17051

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17056

  • Microsoft Exchange服务器漏洞(CVE-2020-17083/17084/17085) 

CVE-2020-17083和CVE-2020-17084是存在于Microsoft Exchange服务器中的远程代码执行漏洞。 CVE-2020-17085是一枚拒绝服务漏洞。

三个漏洞官方评级均为 Important。

CVE-2020-17083 CVSS:3.0 5.5/4.8

CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L/E:U/RL:O/RC:C

CVE-2020-17084 CVSS:3.0 8.5/7.4

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C

CVE-2020-17085 CVSS:3.0 6.2/5.4

CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:L/E:U/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17083

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17084

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17085

  • Windows Hyper-V 安全功能绕过漏洞(CVE-2020-17040) 

Hyper-V 中存在一个利用复杂度低、无需特权、无需用户交互的安全功能绕过漏洞。

官方评级 Important,CVSS:3.0 6.5/5.7

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17040

本次更新概括

产品CVE 编号CVE 标题严重程度Azure SphereCVE-2020-16988Azure Sphere 特权提升漏洞CriticalMicrosoft BrowsersCVE-2020-17058Microsoft Browser 内存破坏漏洞CriticalMicrosoft Scripting EngineCVE-2020-17048Chakra Scripting Engine 内存破坏漏洞CriticalMicrosoft Scripting EngineCVE-2020-17052Scripting Engine 内存破坏漏洞CriticalMicrosoft Scripting EngineCVE-2020-17053Internet Explorer 内存破坏漏洞CriticalMicrosoft WindowsCVE-2020-17042Windows Print Spooler 远程代码执行漏洞CriticalMicrosoft WindowsCVE-2020-17051Windows Network File System 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17078Raw Image Extension 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17079Raw Image Extension 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17101HEIF Image Extensions 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17105AV1 Video Extension 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17106HEVC Video Extensions 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17107HEVC Video Extensions 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17108HEVC Video Extensions 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17109HEVC Video Extensions 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17110HEVC Video Extensions 远程代码执行漏洞CriticalMicrosoft Windows Codecs LibraryCVE-2020-17082Raw Image Extension 远程代码执行漏洞CriticalAzure DevOpsCVE-2020-1325Azure DevOps Server and Team Foundation Services 欺骗漏洞ImportantAzure SphereCVE-2020-16970Azure Sphere Unsigned Code Execution VulnerabilityImportantAzure SphereCVE-2020-16981Azure Sphere 特权提升漏洞ImportantAzure SphereCVE-2020-16982Azure Sphere Unsigned Code Execution VulnerabilityImportantAzure SphereCVE-2020-16983Azure Sphere Tampering VulnerabilityImportantAzure SphereCVE-2020-16984Azure Sphere Unsigned Code Execution VulnerabilityImportantAzure SphereCVE-2020-16985Azure Sphere 信息泄露漏洞ImportantAzure SphereCVE-2020-16986Azure Sphere 拒绝服务漏洞ImportantAzure SphereCVE-2020-16987Azure Sphere Unsigned Code Execution VulnerabilityImportantAzure SphereCVE-2020-16989Azure Sphere 特权提升漏洞ImportantAzure SphereCVE-2020-16990Azure Sphere 信息泄露漏洞ImportantAzure SphereCVE-2020-16991Azure Sphere Unsigned Code Execution VulnerabilityImportantAzure SphereCVE-2020-16992Azure Sphere 特权提升漏洞ImportantAzure SphereCVE-2020-16993Azure Sphere 特权提升漏洞ImportantAzure SphereCVE-2020-16994Azure Sphere Unsigned Code Execution VulnerabilityImportantCommon Log File System DriverCVE-2020-17088Windows Common Log File System Driver 特权提升漏洞ImportantMicrosoft DynamicsCVE-2020-17005Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportantMicrosoft DynamicsCVE-2020-17006Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportantMicrosoft DynamicsCVE-2020-17018Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportantMicrosoft DynamicsCVE-2020-17021Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportantMicrosoft Exchange ServerCVE-2020-17083Microsoft Exchange Server 远程代码执行漏洞ImportantMicrosoft Exchange ServerCVE-2020-17084Microsoft Exchange Server 远程代码执行漏洞ImportantMicrosoft Exchange ServerCVE-2020-17085Microsoft Exchange Server 拒绝服务漏洞ImportantMicrosoft Graphics ComponentCVE-2020-16998DirectX 特权提升漏洞ImportantMicrosoft Graphics ComponentCVE-2020-17004Windows Graphics Component 信息泄露漏洞ImportantMicrosoft Graphics ComponentCVE-2020-17068Windows GDI+ 远程代码执行漏洞ImportantMicrosoft Graphics ComponentCVE-2020-17029Windows Canonical Display Driver 信息泄露漏洞ImportantMicrosoft Graphics ComponentCVE-2020-17038Win32k 特权提升漏洞ImportantMicrosoft OfficeCVE-2020-17019Microsoft Excel 远程代码执行漏洞ImportantMicrosoft OfficeCVE-2020-17020Microsoft Word 安全功能绕过漏洞ImportantMicrosoft OfficeCVE-2020-17062Microsoft Office Access Connectivity Engine 远程代码执行漏洞ImportantMicrosoft OfficeCVE-2020-17063Microsoft Office Online 欺骗漏洞ImportantMicrosoft OfficeCVE-2020-17064Microsoft Excel 远程代码执行漏洞ImportantMicrosoft OfficeCVE-2020-17065Microsoft Excel 远程代码执行漏洞ImportantMicrosoft OfficeCVE-2020-17066Microsoft Excel 远程代码执行漏洞ImportantMicrosoft OfficeCVE-2020-17067Microsoft Excel 安全功能绕过漏洞ImportantMicrosoft Office SharePointCVE-2020-16979Microsoft SharePoint 信息泄露漏洞ImportantMicrosoft Office SharePointCVE-2020-17016Microsoft SharePoint 欺骗漏洞ImportantMicrosoft Office SharePointCVE-2020-17017Microsoft SharePoint 信息泄露漏洞ImportantMicrosoft Office SharePointCVE-2020-17060Microsoft SharePoint 欺骗漏洞ImportantMicrosoft Office SharePointCVE-2020-17061Microsoft SharePoint 远程代码执行漏洞ImportantMicrosoft Scripting EngineCVE-2020-17054Chakra Scripting Engine 内存破坏漏洞ImportantMicrosoft TeamsCVE-2020-17091Microsoft Teams 远程代码执行漏洞ImportantMicrosoft WindowsCVE-2020-16997Remote Desktop Protocol Server 信息泄露漏洞ImportantMicrosoft WindowsCVE-2020-17000Remote Desktop Protocol Client 信息泄露漏洞ImportantMicrosoft WindowsCVE-2020-17001Windows Print Spooler 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17055Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17056Windows Network File System 信息泄露漏洞ImportantMicrosoft WindowsCVE-2020-17057Windows Win32k 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-1599Windows 欺骗漏洞ImportantMicrosoft WindowsCVE-2020-17007Windows Error Reporting 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17010Win32k 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17011Windows Port Class Library 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17012Windows Bind Filter Driver 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17013Win32k 信息泄露漏洞ImportantMicrosoft WindowsCVE-2020-17014Windows Print Spooler 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17024Windows Client Side Rendering Print Provider 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17025Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17026Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17027Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17028Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17030Windows MSCTF Server 信息泄露漏洞ImportantMicrosoft WindowsCVE-2020-17031Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17032Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17033Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17034Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17036Windows Function Discovery SSDP Provider 信息泄露漏洞ImportantMicrosoft WindowsCVE-2020-17040Windows Hyper-V 安全功能绕过漏洞ImportantMicrosoft WindowsCVE-2020-17041Windows Print Configuration 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17043Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17044Windows Remote Access 特权提升漏洞ImportantMicrosoft WindowsCVE-2020-17045Windows KernelStream 信息泄露漏洞ImportantMicrosoft WindowsCVE-2020-17047Windows Network File System 拒绝服务漏洞ImportantMicrosoft WindowsCVE-2020-17049Kerberos 安全功能绕过漏洞ImportantMicrosoft Windows Codecs LibraryCVE-2020-17102WebP Image Extensions 信息泄露漏洞ImportantMicrosoft Windows Codecs LibraryCVE-2020-17113Windows Camera Codec 信息泄露漏洞ImportantMicrosoft Windows Codecs LibraryCVE-2020-17081Microsoft Raw Image Extension 信息泄露漏洞ImportantMicrosoft Windows Codecs LibraryCVE-2020-17086Raw Image Extension 远程代码执行漏洞ImportantVisual StudioCVE-2020-17100Visual Studio Tampering VulnerabilityImportantVisual StudioCVE-2020-17104Visual Studio Code JSHint Extension 远程代码执行漏洞ImportantWindows DefenderCVE-2020-17090Microsoft Defender for Endpoint 安全功能绕过漏洞ImportantWindows KernelCVE-2020-17087Windows Kernel Local 特权提升漏洞ImportantWindows KernelCVE-2020-17035Windows Kernel 特权提升漏洞ImportantWindows NDISCVE-2020-17069Windows NDIS 信息泄露漏洞ImportantWindows Update StackCVE-2020-17070Windows Update Medic Service 特权提升漏洞ImportantWindows Update StackCVE-2020-17071Windows Delivery Optimization 信息泄露漏洞ImportantWindows Update StackCVE-2020-17073Windows Update Orchestrator Service 特权提升漏洞ImportantWindows Update StackCVE-2020-17074Windows Update Orchestrator Service 特权提升漏洞ImportantWindows Update StackCVE-2020-17075Windows USO Core Worker 特权提升漏洞ImportantWindows Update StackCVE-2020-17076Windows Update Orchestrator Service 特权提升漏洞ImportantWindows Update StackCVE-2020-17077Windows Update Stack 特权提升漏洞ImportantWindows WalletServiceCVE-2020-16999Windows WalletService 信息泄露漏洞ImportantWindows WalletServiceCVE-2020-17037Windows WalletService 特权提升漏洞ImportantMicrosoft Office SharePointCVE-2020-17015Microsoft SharePoint 欺骗漏洞LowMicrosoft WindowsCVE-2020-17046Windows Error Reporting 拒绝服务漏洞Low

修复建议

微软官方已经发布更新补丁,请及时进行补丁更新。


知识来源: blog.nsfocus.net/microsoft-november-security-update-summary-1111/

阅读:163071 | 评论:0 | 标签:威胁通告 安全漏洞 安全补丁 微软 安全

想收藏或者和大家分享这篇好文章→复制链接地址

“【安全通告】微软11月补丁修复112个安全问题”共有0条留言

发表评论

姓名:

邮箱:

网址:

验证码:

黑帝公告 📢

永久免费持续更新精选优质黑客技术文章Hackdig,帮你成为掌握黑客技术的英雄

↓赞助商 🙇🧎

标签云 ☁