微软多个清静误差通告

宣布时间 2020-08-12

0x00 误差概述



微软于周二宣布了8月清静更新补丁,修复了包括2个0day在内的120个误差,涉及Internet Explorer(IE)、Office、Microsoft Edge、Windows Media等众多组件和软件。值得注重的是,Windows诱骗误差(CVE-2020-1464)和IE剧本引擎内存破损误差(CVE-2020-1380)已被检测到在野使用,别的尚有四个远程代码执行误差(CVE-2020-1585、CVE-2020-1568、CVE-2020-1567、CVE-2020-1570)和三个权限提升误差(CVE-2020-1472、CVE-2020-1480、CVE-2020-1529),需要重点关注,详见表格:



产品

CVE ID

类 型

误差品级

远程使用

Windows

CVE-2020-1464

Spoofing

高危

Internet Explorer

CVE-2020-1380

RCE

严重

Windows

CVE-2020-1472

EOP

严重

Windows

CVE-2020-1585

RCE

严重

Microsoft Edge

CVE-2020-1568

RCE

严重

Internet Explorer

CVE-2020-1567

RCE

严重

Internet Explorer

CVE-2020-1570

RCE

严重

Windows

CVE-2020-1480

EOP

高危

Windows

CVE-2020-1529

EOP

高危


0x01 误差详情


耀世娱乐-科技赋能场景,让娱乐更有趣。



Windows诱骗误差(CVE-2020-1464)

Windows在验证署名时,保存一个诱骗误差。乐成使用此误差的攻击者可绕过清静特征,从而加载过失署名的文件。

IE剧本引擎内存损坏误差(CVE-2020-1380)

IE剧本引擎在处置惩罚内存中的工具时,保存一个远程代码执行误差。攻击者可通过诱导用户会见特制网站或通过诱导用户翻开嵌入标记为“初始化清静”的ActiveX控件的应用程序或Microsoft Office文档等方法来使用此误差,别的,攻击者还可以通过攻击懦弱网站、向内容或广告服务提供商添加特制内容来使用此误差,该误差导致可以在目今用户的上下文中执行恣意代码的方法损坏内存。

NetLogon权限提升误差(CVE-2020-1472)

NetLogon中保存一个权限提升误差。未经身份认证的攻击者可通过使用Netlogon远程协议(MS-NRPC)毗连域控制器来使用此误差。乐成使用此误差的攻击者可获得域管理员会见权限。

Windows编码解码库远程代码执行误差(CVE-2020-1585)

当 Microsoft Windows Codecs 库处置惩罚内存中的工具时,保存远程执行代码误差。乐成使用此误差的攻击者可以控制受影响的系统。

Microsoft Edge PDF远程执行代码误差(CVE-2020-1568)

Microsoft Edge PDF 阅读器在处置惩罚内存中的工具时,保存远程执行代码误差。远程攻击者通过结构包括恶意内容的PDF页面,并诱使用户使用Edge浏览器翻开,乐成使用此误差的攻击者可在受影响的系统上以相同的用户权限执行恣意代码。

MSHTML引擎远程执行代码误差(CVE-2020-1567)

该误差保存于MSHTML中的VBScript中,由于对VBScript的一个回调会删除工具,而对该块空间的引用仍然保保存客栈中,若是挪用该引用,则会触发UAF,最终可以造成远程代码执行。

IE剧本引擎内存损坏误差(CVE-2020-1570)

该误差源于javascript未初始化客栈内存,var工具通过GetValue来举行初始化,若是第二个参数为工具,则GetValue只初始化第三个参数值,造成第二个参数未初始化,最终导致远程代码执行。

Windows GDI 权限提升误差(CVE-2020-1480/CVE-2020-1529)

Windows 图形装备接口 (GDI) 处置惩罚内存中的工具的方法中保存特权提升误差。乐成使用此误差的攻击者可以在内核模式下执行恣意代码。


0x02 影响规模



误差编号

受影响产品版本

CVE-2020-1464

Windows 10 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1709 for 32-bit Systems

Windows 10 Version 1709 for ARM64-based Systems

Windows 10 Version 1709 for x64-based Systems

Windows 10 Version 1803 for 32-bit Systems

Windows 10 Version 1803 for ARM64-based Systems

Windows 10 Version 1803 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1903 for 32-bit Systems

Windows 10 Version 1903 for ARM64-based Systems

Windows 10 Version 1903 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 10 Version 2004 for 32-bit Systems

Windows 10 Version 2004 for ARM64-based Systems

Windows 10 Version 2004 for x64-based Systems

Windows 7 for 32-bit Systems Service Pack 1

Windows 7 for x64-based Systems Service Pack 1

Windows 8.1 for 32-bit systems

Windows 8.1 for x64-based systems

Windows RT 8.1

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2012

Windows Server 2012 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 R2 (Server Core installation)

Windows Server 2016

Windows Server 2016 (Server Core installation)

Windows Server 2019

Windows Server 2019 (Server Core installation)

Windows Server, version 1903 (Server Core installation)

Windows Server, version 1909 (Server Core installation)

Windows Server, version 2004 (Server Core installation)

CVE-2020-1380

Internet Explorer 11

CVE-2020-1472

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2012

Windows Server 2012 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 R2 (Server Core installation)

Windows Server 2016

Windows Server 2016 (Server Core installation)

Windows Server 2019

Windows Server 2019 (Server Core installation)

Windows Server, version 1903 (Server Core installation)

Windows Server, version 1909 (Server Core installation)

Windows Server, version 2004 (Server Core installation)

CVE-2020-1585

Windows 10 Version 1709 for 32-bit Systems

Windows 10 Version 1709 for ARM64-based Systems

Windows 10 Version 1709 for x64-based Systems

Windows 10 Version 1803 for 32-bit Systems

Windows 10 Version 1803 for ARM64-based Systems

Windows 10 Version 1803 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1903 for 32-bit Systems

Windows 10 Version 1903 for ARM64-based Systems

Windows 10 Version 1903 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 10 Version 2004 for 32-bit Systems

Windows 10 Version 2004 for ARM64-based Systems

Windows 10 Version 2004 for x64-based Systems

CVE-2020-1568

Microsoft Edge (EdgeHTML-based)

CVE-2020-1567

CVE-2020-1570

Internet Explorer 11

Internet Explorer 9

CVE-2020-1480

Windows 10 Version 1709 for 32-bit Systems

Windows 10 Version 1709 for ARM64-based Systems

Windows 10 Version 1709 for x64-based Systems

Windows 10 Version 1803 for 32-bit Systems

Windows 10 Version 1803 for ARM64-based Systems

Windows 10 Version 1803 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1903 for 32-bit Systems

Windows 10 Version 1903 for ARM64-based Systems

Windows 10 Version 1903 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 10 Version 2004 for 32-bit Systems

Windows 10 Version 2004 for ARM64-based Systems

Windows 10 Version 2004 for x64-based Systems

Windows Server 2019

Windows Server 2019 (Server Core installation)

Windows Server, version 1903 (Server Core installation)

Windows Server, version 1909 (Server Core installation)

Windows Server, version 2004 (Server Core installation)

CVE-2020-1529

Windows 10 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1709 for 32-bit Systems

Windows 10 Version 1709 for ARM64-based Systems

Windows 10 Version 1709 for x64-based Systems

Windows 10 Version 1803 for 32-bit Systems

Windows 10 Version 1803 for ARM64-based Systems

Windows 10 Version 1803 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1903 for 32-bit Systems

Windows 10 Version 1903 for ARM64-based Systems

Windows 10 Version 1903 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 10 Version 2004 for 32-bit Systems

Windows 10 Version 2004 for ARM64-based Systems

Windows 10 Version 2004 for x64-based Systems

Windows 7 for 32-bit Systems Service Pack 1

Windows 7 for x64-based Systems Service Pack 1

Windows 8.1 for 32-bit systems

Windows 8.1 for x64-based systems

Windows RT 8.1

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2012

Windows Server 2012 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 R2 (Server Core installation)

Windows Server 2016

Windows Server 2016 (Server Core installation)

Windows Server 2019

Windows Server 2019 (Server Core installation)

Windows Server, version 1903 (Server Core installation)

Windows Server, version 1909 (Server Core installation)

Windows Server, version 2004 (Server Core installation)


0x03 处置惩罚建议


微软官方已经宣布补丁,下载链接:

https://portal.msrc.microsoft.com/en-us/security-guidance


0x04 相关新闻


https://www.bleepingcomputer.com/news/microsoft/microsoft-august-2020-patch-tuesday-fixes-2-zero-days-120-flaws/


0x05 参考链接


https://portal.msrc.microsoft.com/en-us/security-guidance


0x06 时间线


2020-08-11 微软官方宣布误差

2020-08-12 VSRC宣布误差通告

耀世娱乐-科技赋能场景,让娱乐更有趣。