【漏洞通告】微软8月安全更新多个产品高危漏洞通告

2020-08-17 16:07:10 浏览数 (1)

通告编号:NS-2020-0046

2020-08-12

TAG:

安全更新、Windows、IE、Edge、SQL Server、.Net

漏洞危害:

攻击者利用本次安全更新中的漏洞,可造成信息泄露、权限提升、远程代码执行等。

版本:

1.0

1

漏洞概述

北京时间8月12日,微软发布8月安全更新补丁,修复了120个安全问题,涉及Microsoft Windows、Internet Explorer、Microsoft SQL Server、Microsoft Edge、ChakraCore、.Net 框架等广泛使用的产品,其中包括远程代码执行和权限提升等高危漏洞类型。

本月微软月度更新修复的漏洞中,严重程度为关键(Critical)的漏洞共有17个,重要(Important)漏洞有103个。请相关用户及时更新补丁进行防护,详细漏洞列表请参考附录。

参考链接:

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Aug

SEE MORE →

2重点漏洞简述

根据产品流行度和漏洞重要性筛选出此次更新中包含影响较大的漏洞,请相关用户重点进行关注:

CVE-2020-1380:脚本引擎内存损坏漏洞

脚本引擎在 Internet Explorer 中不正确地处理内存中的对象时,存在远程执行代码漏洞。该漏洞以一种攻击者可以在当前用户的上下文中执行任意代码的方式损坏内存。攻击者通过创建特制页面并诱使用户使用IE打开时,可能会触发此漏洞。成功利用该漏洞的攻击者可以获得与当前用户相同的用户权限,此漏洞已存在野外利用。

官方通告链接:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1380

CVE-2020-1464:Windows 签名验证绕过漏洞

当Windows不正确地验证文件签名时,存在签名验证绕过漏洞。攻击者通过在受影响的计算机上执行特定操作,可以绕过安全功能,并加载不正确签名的文件。目前此漏洞信息已公开,并发现在野利用。

官方通告链接:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1464

CVE-2020-1472:NetLogon 特权提升漏洞

使用 Netlogon 远程协议 (MS-NRPC) 建立与域控制器连接的 Netlogon 安全通道时,存在特权提升漏洞。未经身份验证的攻击者将MS-NRPC连接到域控制器,在网络中的设备上运行经特殊设计的应用程序,成功利用此漏洞的攻击者可以获取域管理员访问权限。CVSS评分为10。

官方通告链接:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1472

CVE-2020-1585/CVE-2020-1560:Microsoft Windows Codecs 库远程执行代码漏洞

Microsoft Windows Codecs Library在处理内存中的对象时,存在两个远程代码执行漏洞(CVE-2020-1585、CVE-2020-1560)。攻击者可通过诱导用户打开特制的图像文件来利用漏洞,成功利用漏洞的攻击者可以获取信息从而进一步利用受影响系统。

注:仅影响从Microsoft Store安装了可选的HEVC或"HEVC from Device Manufacturer"媒体编解码器的系统

官方通告链接:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1585

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1560

CVE-2020-1568: Microsoft Edge PDF 远程执行代码漏洞

Microsoft Edge PDF 阅读器在不正确地处理内存中的对象时,存在远程执行代码漏洞。该漏洞可能以一种使攻击者可以在当前用户的环境中执行任意代码的方式损坏内存。攻击者通过构造特制的PDF页面,并诱使用户使用Edge浏览器打开,成功利用此漏洞的攻击者可在受影响的系统上以相同的用户权限执行任意代码。

官方通告链接:

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2020-1568

3影响范围

以下为重点关注漏洞的受影响产品版本,其他漏洞影响产品范围请参阅官方通告链接。

漏洞编号

受影响产品版本

CVE-2020-1380

Internet Explorer 11:Windows 10 Version 1803 for 32-bit SystemsWindows 10 Version 1803 for x64-based SystemsWindows 10 Version 1803 for ARM64-based SystemsWindows 10 Version 1809 for 32-bit SystemsWindows 10 Version 1809 for x64-based SystemsWindows 10 Version 1809 for ARM64-based SystemsWindows Server 2019Windows 10 Version 1909 for 32-bit SystemsWindows 10 Version 1909 for x64-based SystemsWindows 10 Version 1909 for ARM64-based SystemsWindows 10 Version 1709 for 32-bit SystemsWindows 10 Version 1709 for x64-based SystemsWindows 10 Version 1709 for ARM64-based SystemsWindows 10 Version 1903 for 32-bit SystemsWindows 10 Version 1903 for x64-based SystemsWindows 10 Version 1903 for ARM64-based SystemsWindows 10 Version 2004 for 32-bit SystemsWindows 10 Version 2004 for ARM64-based SystemsWindows 10 Version 2004 for x64-based SystemsWindows 10 for 32-bit SystemsWindows 10 for x64-based SystemsWindows 10 Version 1607 for 32-bit SystemsWindows 10 Version 1607 for x64-based SystemsWindows Server 2016Windows 7 for 32-bit Systems Service Pack 1Windows 7 for x64-based Systems Service Pack 1Windows 8.1 for 32-bit systemsWindows 8.1 for x64-based systemsWindows RT 8.1Windows Server 2008 R2 for x64-based Systems Service Pack 1Windows Server 2012Windows Server 2012 R2

CVE-2020-1464

Windows 10 for 32-bit SystemsWindows 10 for x64-based SystemsWindows 10 Version 1607 for 32-bit SystemsWindows 10 Version 1607 for x64-based SystemsWindows 10 Version 1709 for 32-bit SystemsWindows 10 Version 1709 for ARM64-based SystemsWindows 10 Version 1709 for x64-based SystemsWindows 10 Version 1803 for 32-bit SystemsWindows 10 Version 1803 for ARM64-based SystemsWindows 10 Version 1803 for x64-based SystemsWindows 10 Version 1809 for 32-bit SystemsWindows 10 Version 1809 for ARM64-based SystemsWindows 10 Version 1809 for x64-based SystemsWindows 10 Version 1903 for 32-bit SystemsWindows 10 Version 1903 for ARM64-based SystemsWindows 10 Version 1903 for x64-based SystemsWindows 10 Version 1909 for 32-bit SystemsWindows 10 Version 1909 for ARM64-based SystemsWindows 10 Version 1909 for x64-based SystemsWindows 10 Version 2004 for 32-bit SystemsWindows 10 Version 2004 for ARM64-based SystemsWindows 10 Version 2004 for x64-based SystemsWindows 7 for 32-bit Systems Service Pack 1Windows 7 for x64-based Systems Service Pack 1Windows 8.1 for 32-bit systemsWindows 8.1 for x64-based systemsWindows RT 8.1Windows Server 2008 for 32-bit Systems Service Pack 2Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)Windows Server 2008 for x64-based Systems Service Pack 2Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)Windows Server 2008 R2 for x64-based Systems Service Pack 1Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)Windows Server 2012Windows Server 2012 (Server Core installation)Windows Server 2012 R2Windows Server 2012 R2 (Server Core installation)Windows Server 2016Windows Server 2016 (Server Core installation)Windows Server 2019Windows Server 2019 (Server Core installation)Windows Server, version 1903 (Server Core installation)Windows Server, version 1909 (Server Core installation)Windows Server, version 2004 (Server Core installation)

CVE-2020-1472

Windows Server 2008 R2 for x64-based Systems Service Pack 1Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)Windows Server 2012Windows Server 2012 (Server Core installation)Windows Server 2012 R2Windows Server 2012 R2 (Server Core installation)Windows Server 2016Windows Server 2016 (Server Core installation)Windows Server 2019Windows Server 2019 (Server Core installation)Windows Server, version 1903 (Server Core installation)Windows Server, version 1909 (Server Core installation)Windows Server, version 2004 (Server Core installation)

CVE-2020-1585

Windows 10 Version 1709 for 32-bit SystemsWindows 10 Version 1709 for ARM64-based SystemsWindows 10 Version 1709 for x64-based SystemsWindows 10 Version 1803 for 32-bit SystemsWindows 10 Version 1803 for ARM64-based SystemsWindows 10 Version 1803 for x64-based SystemsWindows 10 Version 1809 for 32-bit SystemsWindows 10 Version 1809 for ARM64-based SystemsWindows 10 Version 1809 for x64-based SystemsWindows 10 Version 1903 for 32-bit SystemsWindows 10 Version 1903 for ARM64-based SystemsWindows 10 Version 1903 for x64-based SystemsWindows 10 Version 1909 for 32-bit SystemsWindows 10 Version 1909 for ARM64-based SystemsWindows 10 Version 1909 for x64-based SystemsWindows 10 Version 2004 for 32-bit SystemsWindows 10 Version 2004 for ARM64-based SystemsWindows 10 Version 2004 for x64-based Systems

CVE-2020-1560

Windows 10 Version 1709 for 32-bit SystemsWindows 10 Version 1709 for ARM64-based SystemsWindows 10 Version 1709 for x64-based SystemsWindows 10 Version 1803 for 32-bit SystemsWindows 10 Version 1803 for ARM64-based SystemsWindows 10 Version 1803 for x64-based SystemsWindows 10 Version 1809 for 32-bit SystemsWindows 10 Version 1809 for ARM64-based SystemsWindows 10 Version 1809 for x64-based SystemsWindows 10 Version 1903 for 32-bit SystemsWindows 10 Version 1903 for ARM64-based SystemsWindows 10 Version 1903 for x64-based SystemsWindows 10 Version 1909 for 32-bit SystemsWindows 10 Version 1909 for ARM64-based SystemsWindows 10 Version 1909 for x64-based SystemsWindows 10 Version 2004 for 32-bit SystemsWindows 10 Version 2004 for ARM64-based SystemsWindows 10 Version 2004 for x64-based SystemsWindows Server, version 2004 (Server Core installation)

CVE-2020-1568

Windows 10 Version 2004 for 32-bit SystemsWindows 10 Version 2004 for ARM64-based SystemsWindows 10 Version 2004 for x64-based SystemsWindows 10 Version 1803 for 32-bit SystemsWindows 10 Version 1803 for x64-based SystemsWindows 10 Version 1803 for ARM64-based SystemsWindows 10 Version 1809 for 32-bit SystemsWindows 10 Version 1809 for x64-based SystemsWindows 10 Version 1809 for ARM64-based SystemsWindows Server 2019Windows 10 Version 1909 for 32-bit SystemsWindows 10 Version 1909 for x64-based SystemsWindows 10 Version 1909 for ARM64-based SystemsWindows 10 Version 1709 for 32-bit SystemsWindows 10 Version 1709 for x64-based SystemsWindows 10 Version 1709 for ARM64-based SystemsWindows 10 Version 1903 for 32-bit SystemsWindows 10 Version 1903 for x64-based SystemsWindows 10 Version 1903 for ARM64-based SystemsWindows 10 for 32-bit SystemsWindows 10 for x64-based SystemsWindows 10 Version 1607 for 32-bit SystemsWindows 10 Version 1607 for x64-based SystemsWindows Server 2016

4漏洞防护

4.1 补丁更新

目前微软官方已针对受支持的产品版本发布了修复以上漏洞的安全补丁,强烈建议受影响用户尽快安装补丁进行防护,官方下载链接:

https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Aug

注:由于网络问题、计算机环境问题等原因,Windows Update的补丁更新可能出现失败。用户在安装补丁后,应及时检查补丁是否成功更新。

右键点击Windows图标,选择“设置(N)”,选择“更新和安全”-“Windows更新”,查看该页面上的提示信息,也可点击“查看更新历史记录”查看历史更新情况。

针对未成功安装的更新,可点击更新名称跳转到微软官方下载页面,建议用户点击该页面上的链接,转到“Microsoft更新目录”网站下载独立程序包并安装。

附录:漏洞列表

影响产品

CVE 编号

漏洞标题

严重程度

Windows

CVE-2020-1525

Media Foundation 内存泄露漏洞

Critical

Windows

CVE-2020-1379

Media Foundation 内存泄露漏洞

Critical

Internet Explorer

CVE-2020-1380

Scripting Engine 内存泄露漏洞

Critical

Windows

CVE-2020-1339

Windows Media 远程代码执行漏洞

Critical

Windows

CVE-2020-1472

Netlogon 权限提升漏洞

Critical

Windows

CVE-2020-1477

Media Foundation 内存泄露漏洞

Critical

Microsoft Office

CVE-2020-1483

Microsoft Outlook 内存泄露漏洞

Critical

Windows

CVE-2020-1492

Media Foundation 内存泄露漏洞

Critical

Windows

CVE-2020-1554

Media Foundation 内存泄露漏洞

Critical

Microsoft Edge,ChakraCore

CVE-2020-1555

Scripting Engine 内存泄露漏洞

Critical

Windows

CVE-2020-1560

Microsoft Windows Codecs Library 远程代码执行漏洞

Critical

Internet Explorer

CVE-2020-1567

MSHTML Engine 远程代码执行漏洞

Critical

Microsoft Edge

CVE-2020-1568

Microsoft Edge PDF 远程代码执行漏洞

Critical

Internet Explorer

CVE-2020-1570

Scripting Engine 内存泄露漏洞

Critical

Windows

CVE-2020-1574

Microsoft Windows Codecs Library 远程代码执行漏洞

Critical

Windows

CVE-2020-1585

Microsoft Windows Codecs Library 远程代码执行漏洞

Critical

Microsoft .NET Framework

CVE-2020-1046

.NET Framework 远程代码执行漏洞

Critical

Windows

CVE-2020-1417

Windows Kernel 权限提升漏洞

Important

Windows

CVE-2020-1464

Windows 欺骗漏洞

Important

Windows

CVE-2020-1470

Windows Work Folders Service 权限提升漏洞

Important

Windows

CVE-2020-1509

Local Security Authority Subsystem Service 权限提升漏洞

Important

Windows

CVE-2020-1510

Win32k 信息披露漏洞

Important

Windows

CVE-2020-1516

Windows Work Folders Service 权限提升漏洞

Important

Windows

CVE-2020-1517

Windows File Server Resource Management Service 权限提升漏洞

Important

Windows

CVE-2020-1518

Windows File Server Resource Management Service 权限提升漏洞

Important

Windows

CVE-2020-1519

Windows UPnP Device Host 权限提升漏洞

Important

Windows

CVE-2020-1520

Windows Font Driver Host 远程代码执行漏洞

Important

Windows

CVE-2020-1521

Windows Speech Runtime 权限提升漏洞

Important

Windows

CVE-2020-1522

Windows Speech Runtime 权限提升漏洞

Important

Windows

CVE-2020-1524

Windows Speech Shell Components 权限提升漏洞

Important

Windows

CVE-2020-1526

Windows Network Connection Broker 权限提升漏洞

Important

Windows

CVE-2020-1527

Windows Custom Protocol Engine 权限提升漏洞

Important

Windows

CVE-2020-1528

Windows Radio Manager API 权限提升漏洞

Important

Windows

CVE-2020-1529

Windows GDI 权限提升漏洞

Important

Windows

CVE-2020-1530

Windows Remote Access 权限提升漏洞

Important

Windows

CVE-2020-1531

Windows Accounts Control 权限提升漏洞

Important

Windows

CVE-2020-1533

Windows WalletService 权限提升漏洞

Important

Windows

CVE-2020-1534

Windows Backup Service 权限提升漏洞

Important

Windows

CVE-2020-1535

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1536

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1537

Windows Remote Access 权限提升漏洞

Important

Windows

CVE-2020-1538

Windows UPnP Device Host 权限提升漏洞

Important

Windows

CVE-2020-1539

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1540

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1541

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1542

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1543

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1544

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1545

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1546

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1547

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1548

Windows WaasMedic Service 信息披露漏洞

Important

Windows

CVE-2020-1549

Windows CDP User Components 权限提升漏洞

Important

Windows

CVE-2020-1550

Windows CDP User Components 权限提升漏洞

Important

Windows

CVE-2020-1377

Windows Registry 权限提升漏洞

Important

Windows

CVE-2020-1378

Windows Registry 权限提升漏洞

Important

Windows

CVE-2020-1383

Windows RRAS Service 信息披露漏洞

Important

SQL Server Management Studio

CVE-2020-1455

Microsoft SQL Server Management Studio 拒绝服务漏洞

Important

Windows

CVE-2020-1459

Windows ARM 信息披露漏洞

Important

Windows

CVE-2020-1337

Windows Print Spooler 权限提升漏洞

Important

Windows

CVE-2020-1466

Windows Remote Desktop Gateway (RD Gateway) 拒绝服务漏洞

Important

Windows

CVE-2020-1467

Windows Hard Link 权限提升漏洞

Important

Windows

CVE-2020-1473

Jet Database Engine 远程代码执行漏洞

Important

Windows

CVE-2020-1474

Windows Image Acquisition Service 信息披露漏洞

Important

Windows

CVE-2020-1475

Windows Server Resource Management Service 权限提升漏洞

Important

Microsoft .NET Framework

CVE-2020-1476

ASP.NET and .NET 权限提升漏洞

Important

Windows

CVE-2020-1478

Media Foundation 内存泄露漏洞

Important

Windows

CVE-2020-1479

DirectX 权限提升漏洞

Important

Windows

CVE-2020-1480

Windows GDI 权限提升漏洞

Important

Windows

CVE-2020-1484

Windows Work Folders Service 权限提升漏洞

Important

Windows

CVE-2020-1485

Windows Image Acquisition Service 信息披露漏洞

Important

Windows

CVE-2020-1486

Windows Kernel 权限提升漏洞

Important

Windows

CVE-2020-1487

Media Foundation 信息披露漏洞

Important

Windows

CVE-2020-1488

Windows AppX Deployment Extensions 权限提升漏洞

Important

Windows

CVE-2020-1489

Windows CSC Service 权限提升漏洞

Important

Windows

CVE-2020-1490

Windows Storage Service 权限提升漏洞

Important

Microsoft Office

CVE-2020-1493

Microsoft Outlook 信息披露漏洞

Important

Microsoft Office

CVE-2020-1494

Microsoft Excel 远程代码执行漏洞

Important

Microsoft Office

CVE-2020-1495

Microsoft Excel 远程代码执行漏洞

Important

Microsoft Office

CVE-2020-1496

Microsoft Excel 远程代码执行漏洞

Important

Microsoft Office

CVE-2020-1497

Microsoft Excel 信息披露漏洞

Important

Microsoft Office

CVE-2020-1498

Microsoft Excel 远程代码执行漏洞

Important

Microsoft Office

CVE-2020-1499

Microsoft SharePoint 欺骗漏洞

Important

Microsoft Office

CVE-2020-1500

Microsoft SharePoint 欺骗漏洞

Important

Microsoft Office

CVE-2020-1501

Microsoft SharePoint 欺骗漏洞

Important

Microsoft Office

CVE-2020-1502

Microsoft Word 信息披露漏洞

Important

Microsoft Office

CVE-2020-1503

Microsoft Word 信息披露漏洞

Important

Microsoft Office

CVE-2020-1504

Microsoft Excel 远程代码执行漏洞

Important

Microsoft Office

CVE-2020-1505

Microsoft SharePoint 信息披露漏洞

Important

Windows

CVE-2020-1511

Connected User Experiences and Telemetry Service 权限提升漏洞

Important

Windows

CVE-2020-1512

Windows State Repository Service 信息披露漏洞

Important

Windows

CVE-2020-1513

Windows CSC Service 权限提升漏洞

Important

Windows

CVE-2020-1515

Windows Telephony Server 权限提升漏洞

Important

Windows

CVE-2020-1551

Windows Backup Engine 权限提升漏洞

Important

Windows

CVE-2020-1552

Windows Work Folder Service 权限提升漏洞

Important

Windows

CVE-2020-1553

Windows Runtime 权限提升漏洞

Important

Windows

CVE-2020-1556

Windows WalletService 权限提升漏洞

Important

Windows

CVE-2020-1557

Jet Database Engine 远程代码执行漏洞

Important

Windows

CVE-2020-1558

Jet Database Engine 远程代码执行漏洞

Important

Windows

CVE-2020-1561

Microsoft Graphics Components 远程代码执行漏洞

Important

Windows

CVE-2020-1562

Microsoft Graphics Components 远程代码执行漏洞

Important

Microsoft Office

CVE-2020-1563

Microsoft Office 远程代码执行漏洞

Important

Windows

CVE-2020-1564

Jet Database Engine 远程代码执行漏洞

Important

Windows

CVE-2020-1565

Windows 权限提升漏洞

Important

Windows

CVE-2020-1566

Windows Kernel 权限提升漏洞

Important

Microsoft Edge

CVE-2020-1569

Microsoft Edge 内存泄露漏洞

Important

Windows

CVE-2020-1571

Windows Setup 权限提升漏洞

Important

Microsoft Office

CVE-2020-1573

Microsoft Office SharePoint XSS漏洞

Important

Windows

CVE-2020-1577

DirectWrite 信息披露漏洞

Important

Windows

CVE-2020-1578

Windows Kernel 信息披露漏洞

Important

Windows

CVE-2020-1579

Windows Function Discovery SSDP Provider 权限提升漏洞

Important

Microsoft Office

CVE-2020-1580

Microsoft Office SharePoint XSS漏洞

Important

Microsoft Office

CVE-2020-1581

Microsoft Office Click-to-Run 权限提升漏洞

Important

Microsoft Office

CVE-2020-1582

Microsoft Access 远程代码执行漏洞

Important

Microsoft Office

CVE-2020-1583

Microsoft Word 信息披露漏洞

Important

Windows

CVE-2020-1584

Windows dnsrslvr.dll 权限提升漏洞

Important

Windows

CVE-2020-1587

Windows Ancillary Function Driver for WinSock 权限提升漏洞

Important

Microsoft Dynamics

CVE-2020-1591

Microsoft Dynamics 365 (On-Premise) 跨站脚本漏洞

Important

Microsoft Visual Studio,ASP.NET Core

CVE-2020-1597

ASP.NET Core 拒绝服务漏洞

Important

Visual Studio Code

CVE-2020-0604

Visual Studio Code 远程代码执行漏洞

Important

END

作者:绿盟科技威胁对抗能力部

声明

本安全公告仅用来描述可能存在的安全问题,绿盟科技不为此安全公告提供任何保证或承诺。由于传播、利用此安全公告所提供的信息而造成的任何直接或者间接的后果及损失,均由使用者本人负责,绿盟科技以及安全公告作者不为此承担任何责任。

绿盟科技拥有对此安全公告的修改和解释权。如欲转载或传播此安全公告,必须保证此安全公告的完整性,包括版权声明等全部内容。未经绿盟科技允许,不得任意修改或者增减此安全公告内容,不得以任何方式将其用于商业目的。

0 人点赞