【安全通告】微软11月补丁修复112个安全问题
2020-11-11 18:38:27 Author: blog.nsfocus.net(查看原文) 阅读量:284 收藏

阅读: 12

综述

微软于本周二发布了11月安全更新补丁,修复了112个从简单的欺骗攻击到远程执行代码的安全问题。其中Critical级别漏洞17个,Important 级别漏洞93 个,Low级别漏洞2个。强烈建议所有用户尽快安装更新。

受影响产品涉及Azure DevOps、Azure Sphere、Common Log File System Driver、Microsoft Browsers、Microsoft Dynamics、Microsoft Exchange Server、Microsoft Graphics Component、Microsoft Office、Microsoft Office SharePoint、Microsoft Scripting Engine、Microsoft Teams、Microsoft Windows、Microsoft Windows Codecs Library、Visual Studio、Windows Defender、Windows Kernel、Windows NDIS、Windows Update Stack以及Windows WalletService。

Critical & Important漏洞概述

分 Critical 及Important 漏洞描述如下:

  • Windows内核本地特权提升漏洞(CVE-2020-17087) 

本月2号,Google Project Zero团队发布了一篇关于Windows cng.sys提权漏洞(CVE-2020-17087)的文章。该漏洞允许攻击者在未授权的情况下,通过诱使用户运行精心制作的恶意程序,达到权限提升的效果。当时CVE-2020-17087已经有在野利用的行为出现,并且微软官方没有发布相关补丁。

在本次更新中,该漏洞被修复。请受影响用户尽快安装补丁进行防护。

官方评级 Important,CVSS:3.0 7.8/7.2

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17087

  • Windows网络文件系统(NFS)漏洞(CVE-2020-17051/ 17056) 

CVE-2020-17051是一个存在于nfssvr.sys驱动中的远程代码执行漏洞,可导致蓝屏死机(BSOD)。

CVE-2020-17056是一个存在于nfssvr.sys驱动中的远程内核数据读取漏洞,可导致ASLR(地址空间布局随机化)被绕过。

当这两个漏洞被组合利用时,在Windows服务器上绕过漏洞缓解措施并实现远程利用的可能性大大增加。

NFS用于在Windows和Unix/Linux环境中做文件共享。

CVE-2020-17051官方评级 Critical,CVSS:3.0 9.8/8.5

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C

CVE-2020-17056官方评级 Important,CVSS:3.0 5.5/4.8

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N/E:U/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17051

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17056

  • Microsoft Exchange服务器漏洞(CVE-2020-17083/17084/17085) 

CVE-2020-17083和CVE-2020-17084是存在于Microsoft Exchange服务器中的远程代码执行漏洞。 CVE-2020-17085是一枚拒绝服务漏洞。

三个漏洞官方评级均为 Important。

CVE-2020-17083 CVSS:3.0 5.5/4.8

CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:C/C:L/I:L/A:L/E:U/RL:O/RC:C

CVE-2020-17084 CVSS:3.0 8.5/7.4

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C

CVE-2020-17085 CVSS:3.0 6.2/5.4

CVSS:3.0/AV:N/AC:H/PR:H/UI:N/S:U/C:H/I:H/A:L/E:U/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17083

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17084

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17085

  • Windows Hyper-V 安全功能绕过漏洞(CVE-2020-17040) 

Hyper-V 中存在一个利用复杂度低、无需特权、无需用户交互的安全功能绕过漏洞。

官方评级 Important,CVSS:3.0 6.5/5.7

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L/E:U/RL:O/RC:C

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17040

本次更新概括

产品CVE 编号CVE 标题严重程度
Azure SphereCVE-2020-16988Azure Sphere 特权提升漏洞Critical
Microsoft BrowsersCVE-2020-17058Microsoft Browser 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2020-17048Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2020-17052Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2020-17053Internet Explorer 内存破坏漏洞Critical
Microsoft WindowsCVE-2020-17042Windows Print Spooler 远程代码执行漏洞Critical
Microsoft WindowsCVE-2020-17051Windows Network File System 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17078Raw Image Extension 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17079Raw Image Extension 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17101HEIF Image Extensions 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17105AV1 Video Extension 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17106HEVC Video Extensions 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17107HEVC Video Extensions 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17108HEVC Video Extensions 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17109HEVC Video Extensions 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17110HEVC Video Extensions 远程代码执行漏洞Critical
Microsoft Windows Codecs LibraryCVE-2020-17082Raw Image Extension 远程代码执行漏洞Critical
Azure DevOpsCVE-2020-1325Azure DevOps Server and Team Foundation Services 欺骗漏洞Important
Azure SphereCVE-2020-16970Azure Sphere Unsigned Code Execution VulnerabilityImportant
Azure SphereCVE-2020-16981Azure Sphere 特权提升漏洞Important
Azure SphereCVE-2020-16982Azure Sphere Unsigned Code Execution VulnerabilityImportant
Azure SphereCVE-2020-16983Azure Sphere Tampering VulnerabilityImportant
Azure SphereCVE-2020-16984Azure Sphere Unsigned Code Execution VulnerabilityImportant
Azure SphereCVE-2020-16985Azure Sphere 信息泄露漏洞Important
Azure SphereCVE-2020-16986Azure Sphere 拒绝服务漏洞Important
Azure SphereCVE-2020-16987Azure Sphere Unsigned Code Execution VulnerabilityImportant
Azure SphereCVE-2020-16989Azure Sphere 特权提升漏洞Important
Azure SphereCVE-2020-16990Azure Sphere 信息泄露漏洞Important
Azure SphereCVE-2020-16991Azure Sphere Unsigned Code Execution VulnerabilityImportant
Azure SphereCVE-2020-16992Azure Sphere 特权提升漏洞Important
Azure SphereCVE-2020-16993Azure Sphere 特权提升漏洞Important
Azure SphereCVE-2020-16994Azure Sphere Unsigned Code Execution VulnerabilityImportant
Common Log File System DriverCVE-2020-17088Windows Common Log File System Driver 特权提升漏洞Important
Microsoft DynamicsCVE-2020-17005Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportant
Microsoft DynamicsCVE-2020-17006Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportant
Microsoft DynamicsCVE-2020-17018Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportant
Microsoft DynamicsCVE-2020-17021Microsoft Dynamics 365 (on-premises) Cross-site Scripting VulnerabilityImportant
Microsoft Exchange ServerCVE-2020-17083Microsoft Exchange Server 远程代码执行漏洞Important
Microsoft Exchange ServerCVE-2020-17084Microsoft Exchange Server 远程代码执行漏洞Important
Microsoft Exchange ServerCVE-2020-17085Microsoft Exchange Server 拒绝服务漏洞Important
Microsoft Graphics ComponentCVE-2020-16998DirectX 特权提升漏洞Important
Microsoft Graphics ComponentCVE-2020-17004Windows Graphics Component 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2020-17068Windows GDI+ 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2020-17029Windows Canonical Display Driver 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2020-17038Win32k 特权提升漏洞Important
Microsoft OfficeCVE-2020-17019Microsoft Excel 远程代码执行漏洞Important
Microsoft OfficeCVE-2020-17020Microsoft Word 安全功能绕过漏洞Important
Microsoft OfficeCVE-2020-17062Microsoft Office Access Connectivity Engine 远程代码执行漏洞Important
Microsoft OfficeCVE-2020-17063Microsoft Office Online 欺骗漏洞Important
Microsoft OfficeCVE-2020-17064Microsoft Excel 远程代码执行漏洞Important
Microsoft OfficeCVE-2020-17065Microsoft Excel 远程代码执行漏洞Important
Microsoft OfficeCVE-2020-17066Microsoft Excel 远程代码执行漏洞Important
Microsoft OfficeCVE-2020-17067Microsoft Excel 安全功能绕过漏洞Important
Microsoft Office SharePointCVE-2020-16979Microsoft SharePoint 信息泄露漏洞Important
Microsoft Office SharePointCVE-2020-17016Microsoft SharePoint 欺骗漏洞Important
Microsoft Office SharePointCVE-2020-17017Microsoft SharePoint 信息泄露漏洞Important
Microsoft Office SharePointCVE-2020-17060Microsoft SharePoint 欺骗漏洞Important
Microsoft Office SharePointCVE-2020-17061Microsoft SharePoint 远程代码执行漏洞Important
Microsoft Scripting EngineCVE-2020-17054Chakra Scripting Engine 内存破坏漏洞Important
Microsoft TeamsCVE-2020-17091Microsoft Teams 远程代码执行漏洞Important
Microsoft WindowsCVE-2020-16997Remote Desktop Protocol Server 信息泄露漏洞Important
Microsoft WindowsCVE-2020-17000Remote Desktop Protocol Client 信息泄露漏洞Important
Microsoft WindowsCVE-2020-17001Windows Print Spooler 特权提升漏洞Important
Microsoft WindowsCVE-2020-17055Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17056Windows Network File System 信息泄露漏洞Important
Microsoft WindowsCVE-2020-17057Windows Win32k 特权提升漏洞Important
Microsoft WindowsCVE-2020-1599Windows 欺骗漏洞Important
Microsoft WindowsCVE-2020-17007Windows Error Reporting 特权提升漏洞Important
Microsoft WindowsCVE-2020-17010Win32k 特权提升漏洞Important
Microsoft WindowsCVE-2020-17011Windows Port Class Library 特权提升漏洞Important
Microsoft WindowsCVE-2020-17012Windows Bind Filter Driver 特权提升漏洞Important
Microsoft WindowsCVE-2020-17013Win32k 信息泄露漏洞Important
Microsoft WindowsCVE-2020-17014Windows Print Spooler 特权提升漏洞Important
Microsoft WindowsCVE-2020-17024Windows Client Side Rendering Print Provider 特权提升漏洞Important
Microsoft WindowsCVE-2020-17025Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17026Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17027Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17028Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17030Windows MSCTF Server 信息泄露漏洞Important
Microsoft WindowsCVE-2020-17031Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17032Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17033Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17034Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17036Windows Function Discovery SSDP Provider 信息泄露漏洞Important
Microsoft WindowsCVE-2020-17040Windows Hyper-V 安全功能绕过漏洞Important
Microsoft WindowsCVE-2020-17041Windows Print Configuration 特权提升漏洞Important
Microsoft WindowsCVE-2020-17043Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17044Windows Remote Access 特权提升漏洞Important
Microsoft WindowsCVE-2020-17045Windows KernelStream 信息泄露漏洞Important
Microsoft WindowsCVE-2020-17047Windows Network File System 拒绝服务漏洞Important
Microsoft WindowsCVE-2020-17049Kerberos 安全功能绕过漏洞Important
Microsoft Windows Codecs LibraryCVE-2020-17102WebP Image Extensions 信息泄露漏洞Important
Microsoft Windows Codecs LibraryCVE-2020-17113Windows Camera Codec 信息泄露漏洞Important
Microsoft Windows Codecs LibraryCVE-2020-17081Microsoft Raw Image Extension 信息泄露漏洞Important
Microsoft Windows Codecs LibraryCVE-2020-17086Raw Image Extension 远程代码执行漏洞Important
Visual StudioCVE-2020-17100Visual Studio Tampering VulnerabilityImportant
Visual StudioCVE-2020-17104Visual Studio Code JSHint Extension 远程代码执行漏洞Important
Windows DefenderCVE-2020-17090Microsoft Defender for Endpoint 安全功能绕过漏洞Important
Windows KernelCVE-2020-17087Windows Kernel Local 特权提升漏洞Important
Windows KernelCVE-2020-17035Windows Kernel 特权提升漏洞Important
Windows NDISCVE-2020-17069Windows NDIS 信息泄露漏洞Important
Windows Update StackCVE-2020-17070Windows Update Medic Service 特权提升漏洞Important
Windows Update StackCVE-2020-17071Windows Delivery Optimization 信息泄露漏洞Important
Windows Update StackCVE-2020-17073Windows Update Orchestrator Service 特权提升漏洞Important
Windows Update StackCVE-2020-17074Windows Update Orchestrator Service 特权提升漏洞Important
Windows Update StackCVE-2020-17075Windows USO Core Worker 特权提升漏洞Important
Windows Update StackCVE-2020-17076Windows Update Orchestrator Service 特权提升漏洞Important
Windows Update StackCVE-2020-17077Windows Update Stack 特权提升漏洞Important
Windows WalletServiceCVE-2020-16999Windows WalletService 信息泄露漏洞Important
Windows WalletServiceCVE-2020-17037Windows WalletService 特权提升漏洞Important
Microsoft Office SharePointCVE-2020-17015Microsoft SharePoint 欺骗漏洞Low
Microsoft WindowsCVE-2020-17046Windows Error Reporting 拒绝服务漏洞Low

修复建议

微软官方已经发布更新补丁,请及时进行补丁更新。


文章来源: http://blog.nsfocus.net/microsoft-november-security-update-summary-1111/
如有侵权请联系:admin#unsafe.sh