微软多个产品高危漏洞(CVE-2019-1471、CVE-2019-1468、CVE-2019-1461、CVE-2019-1462、CVE-2019-1453)

来源:scanv2019.12.12

一 漏洞概述

2019年12月10日,微软发布12月份安全更新,共修复了36个漏洞(包括一个0day漏洞),涉及到Windows Hyper-V,Graphics,GDI, RDP, OLE,Microsoft PowerPoint,Word,Excel,Git for Visual Studio等组件和软件。相关修复措施可参考微软官方建议进行升级,以下对主要补丁进行描述:

CVE-2019-1471  Hyper-V 远程代码执行漏洞(CNNVD-201912-347):
当主机服务器上的 Windows Hyper-V无法正确验证来宾操作系统上已通过身份验证的用户输入时,会触发远程代码执行漏洞。攻击者可以在来宾操作系统上运行经特殊设计的应用程序来利用此漏洞,从而执行任意代码。

CVE-2019-1468  Win32k 图形组件远程代码执行漏洞(CNNVD-201912-339):
当Windows 字体库无法正确处理嵌入的字体时,会触发远程代码执行漏洞。成功利用此漏洞的攻击者可以控制受影响的系统。攻击者随后可安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。若要利用此漏洞,攻击者需要设计一个含有恶意代码的网站,然后诱使用户查看该网站。

CVE-2019-1461  Microsoft Word 拒绝服务漏洞(CNNVD-201912-350):
Microsoft Word 软件无法正确处理内存中的对象时,会触发拒绝服务漏洞。成功利用此漏洞的攻击者可能会导致系统远程拒绝服务。攻击者需要将经过特殊设计的文档发送给目标用户才能利用此漏洞。

CVE-2019-1462 Microsoft PowerPoint 远程代码执行漏洞(CNNVD-201912-351):
Microsoft Windows Win32k远程代码执行漏洞,Windows字体库不正确地处理特制嵌入式字体时,存在远程代码执行漏洞,利用此漏洞攻击者需要精心构造一个特制网站,然后诱使用户查看该网站。成功利用此漏洞的攻击者可以控制受影响的系统。

CVE-2019-1453 Windows 远程桌面协议 (RDP) 拒绝服务漏洞(CNNVD-201912-337):
Windows远程桌面协议 (RDP) 存在 一个拒绝服务漏洞,攻击者可通过RDP连接并发送经过特殊设计的请求来触发此漏洞。成功利用此漏洞的攻击者,可能导致目标系统RDP 服务停止响应。

 

二 影响版本

CVE-2019-1471:
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1903 for x64-based Systems
Windows 10 Version 1909 for x64-based Systems
Windows Server 2019
Windows Server 2019 (Server Core installation)
Windows Server, version 1803 (Server Core Installation)
Windows Server, version 1903 (Server Core installation)
Windows Server, version 1909 (Server Core installation)

CVE-2019-1468:
Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1709 for 32-bit Systems
Windows 10 Version 1709 for ARM64-based Systems
Windows 10 Version 1709 for x64-based Systems
Windows 10 Version 1803 for 32-bit Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1903 for 32-bit Systems
Windows 10 Version 1903 for ARM64-based Systems
Windows 10 Version 1903 for x64-based Systems
Windows 10 Version 1909 for 32-bit Systems
Windows 10 Version 1909 for ARM64-based Systems
Windows 10 Version 1909 for x64-based Systems
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Windows RT 8.1
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)
Windows Server 2016
Windows Server 2016 (Server Core installation)
Windows Server 2019
Windows Server 2019 (Server Core installation)
Windows Server, version 1803 (Server Core Installation)
Windows Server, version 1903 (Server Core installation)
Windows Server, version 1909 (Server Core installation)

CVE-2019-1461:
Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2019 for 64-bit editions
Microsoft Word 2010 Service Pack 2 (32-bit editions)
Microsoft Word 2010 Service Pack 2 (64-bit editions)
Microsoft Word 2013 RT Service Pack 1
Microsoft Word 2013 Service Pack 1 (32-bit editions)
Microsoft Word 2013 Service Pack 1 (64-bit editions)
Microsoft Word 2016 (32-bit edition)
Microsoft Word 2016 (64-bit edition)
Office 365 ProPlus for 32-bit Systems
Office 365 ProPlus for 64-bit Systems

CVE-2019-1462:
Microsoft Office 2016 for Mac
Microsoft Office 2019 for 32-bit editions
Microsoft Office 2019 for 64-bit editions
Microsoft Office 2019 for Mac
Microsoft PowerPoint 2010 Service Pack 2 (32-bit editions)
Microsoft PowerPoint 2010 Service Pack 2 (64-bit editions)
Microsoft PowerPoint 2013 RT Service Pack 1
Microsoft PowerPoint 2013 Service Pack 1 (32-bit editions)
Microsoft PowerPoint 2013 Service Pack 1 (64-bit editions)
Microsoft PowerPoint 2016 (32-bit edition)
Microsoft PowerPoint 2016 (64-bit edition)
Office 365 ProPlus for 32-bit Systems
Office 365 ProPlus for 64-bit Systems

CVE-2019-1453:
Windows 10 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1709 for 32-bit Systems
Windows 10 Version 1709 for ARM64-based Systems
Windows 10 Version 1709 for x64-based Systems
Windows 10 Version 1803 for 32-bit Systems
Windows 10 Version 1803 for ARM64-based Systems
Windows 10 Version 1803 for x64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 10 Version 1903 for 32-bit Systems
Windows 10 Version 1903 for ARM64-based Systems
Windows 10 Version 1903 for x64-based Systems
Windows 10 Version 1909 for 32-bit Systems
Windows 10 Version 1909 for ARM64-based Systems
Windows 10 Version 1909 for x64-based Systems
Windows 7 for 32-bit Systems Service Pack 1
Windows 7 for x64-based Systems Service Pack 1
Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Windows RT 8.1
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2012
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 R2 (Server Core installation)
Windows Server 2016
Windows Server 2016 (Server Core installation)
Windows Server 2019
Windows Server 2019 (Server Core installation)
Windows Server, version 1803 (Server Core Installation)
Windows Server, version 1903 (Server Core installation)
Windows Server, version 1909 (Server Core installation)

三 复现过程

四 影响范围

根据 ZoomEye 网络空间搜索引擎[1]对关键字 “Windows” 进行搜索,共得到 61,008,093 条 IP 历史记录,主要分布在美国、中国等国家。

五 修复建议

1. 微软官方已给出针对此漏洞的安全更新补丁:
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1471
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1468
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1461
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1462
https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2019-1453

六 相关链接

ZoomEye 网络空间搜索引擎:https://www.zoomeye.org/searchResult?q=Windows

热门文章

关注知道创宇云安全

获取安全动态