微软 |4月多个安全漏洞通告
发布时间 2020-04-160x00 漏洞概述
|
产品 |
CVE ID |
类 型 |
漏洞等级 |
远程利用 |
|
Windows OneDrive |
CVE-2020-0935 |
EoP |
严重 |
否 |
|
Adobe Font Manager |
CVE-2020-1020 |
RCE |
严重 |
是 |
|
Adobe Font Manager |
CVE-2020-0938 |
RCE |
严重 |
是 |
0x01 漏洞详情
微软于周二发布了4月安全更新补丁,发布了针对113个漏洞的修复程序。在这些漏洞中,有15个被分类为严重,93个被分类为重要,3个被分类为中等,2个被归类为低危。微软表示有两个0day先前已被公开披露,包括Windows OneDrive特权提升漏洞(CVE-2020-0935)和Adobe Font Manager库远程执行代码漏洞(CVE-2020-1020),并且后者和另一个漏洞(Adobe Font Manager库远程执行代码漏洞CVE-2020-0938)已在野外被利用。
CVE-2020-0935 是Windows OneDrive 权限提升漏洞。OneDrive for Windows Desktop 应用程序无法正确处理符号链接时,存在特权提升漏洞。成功利用此漏洞的攻击者可能会覆盖导致升高状态的目标文件。要利用此漏洞,攻击者首先必须登录系统。然后,攻击者可以运行一个为利用此漏洞而经特殊设计的应用程序,从而控制受影响的系统。
CVE-2020-1020和CVE-2020-0938是Adobe字体管理器库远程代码执行漏洞。当 Windows Adobe Type Manager 库未正确处理经特殊设计的多主机 Adobe Type 1 PostScript 格式字体时,Microsoft Windows 中存在远程代码执行漏洞。对于除 Windows 10 之外的所有系统,成功利用此漏洞的攻击者可以远程执行代码。对于运行 Windows 10 的系统,成功利用此漏洞的攻击者可以利用受限的特权和功能在 AppContainer 沙盒上下文中执行代码。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。攻击者可通过多种方式利用此漏洞,包括诱使用户打开经特殊设计文档或在 Windows 预览窗格中查看。
0x02 影响范围
|
漏洞编号 |
受影响产品版本 |
|
CVE-2020-0935 |
OneDrive for Windows |
|
CVE-2020-1020 CVE-2020-0938 |
Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for ARM64-based Systems Windows 10 Version 1709 for x64-based Systems Windows 10 Version 1803 for 32-bit Systems Windows 10 Version 1803 for ARM64-based Systems Windows 10 Version 1803 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for ARM64-based Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1903 for 32-bit Systems Windows 10 Version 1903 for ARM64-based Systems Windows 10 Version 1903 for x64-based Systems Windows 10 Version 1909 for 32-bit Systems Windows 10 Version 1909 for ARM64-based Systems Windows 10 Version 1909 for x64-based Systems Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows RT 8.1 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for Itanium-Based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server, version 1803 (Server Core Installation) Windows Server, version 1903 (Server Core installation) Windows Server, version 1909 (Server Core installation) |
0x03 处置建议
微软官方已经发布补丁修复了上述漏洞,下载链接:
https://portal.msrc.microsoft.com/zh-cn/security-guidance/advisory/CVE-2020-0935
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2020-1020
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2020-0938
0x04 相关新闻
https://www.bleepingcomputer.com/news/microsoft/microsoft-april-2020-patch-tuesday-fixes-3-zero-days-15-critical-flaws/
0x05 参考链接
https://portal.msrc.microsoft.com/zh-cn/security-guidance
0x06 时间线
2020-04-14 微软官方发布漏洞
京公网安备11010802024551号