΢ÈíÔ¶³Ì×ÀÃæЧÀÍÔ¶³Ì´úÂëÖ´ÐÐÎó²îÇ徲ͨ¸æ

Ðû²¼Ê±¼ä 2019-05-15

Îó²î±àºÅºÍ¼¶±ð


CVE±àºÅ£ºCVE-2019-0708£¬£¬£¬£¬Î£ÏÕ¼¶±ð£ºÑÏÖØ£¬£¬£¬£¬CVSS·ÖÖµ£º³§ÉÌ×ÔÆÀ9.8£¬£¬£¬£¬¹Ù·½Î´ÆÀ¶¨


Ó°Ïì°æ±¾


Microsoft Windows XP 0
Microsoft Windows Server 2008 R2 for x64-based Systems SP1
Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1
Microsoft Windows Server 2008 for x64-based Systems SP2
Microsoft Windows Server 2008 for Itanium-based Systems SP2
Microsoft Windows Server 2008 for 32-bit Systems SP2
Microsoft Windows Server 2003 0
Microsoft Windows 7 for x64-based Systems SP1

Microsoft Windows 7 for 32-bit Systems SP1


Îó²î¸ÅÊö


΢ÈíÐû²¼ÁËÕë¶ÔÔ¶³Ì×ÀÃæЧÀÍ£¨ÒÔÇ°³ÆΪÖÕ¶ËЧÀÍ£©µÄÒªº¦Ô¶³ÌÖ´ÐдúÂëÎó²îCVE-2019-0708µÄÐÞ¸´³ÌÐò£¬£¬£¬£¬¸ÃÎó²îÓ°ÏìÁËijЩ¾É°æ±¾µÄWindows¡£¡£¡£¡£¡£¡£


RDPЧÀÍ´¦Öóͷ£´«ÈëÇëÇóµÄ·½·¨±£´æÎó²î¡£¡£¡£¡£¡£¡£¹¥»÷Õß¿ÉÒÔÏòRDPЧÀÍ·¢ËͶñÒâÇëÇ󣬣¬£¬£¬ÓÉÓÚδ׼ȷµÄÇëÇó´¦Öóͷ££¬£¬£¬£¬Ä¿µÄ½«Ö´ÐÐ×¢ÈëÇëÇóµÄ¶ñÒâ´úÂë¡£¡£¡£¡£¡£¡£CVE-2019-0708ÊÇÒ»¸öÔ¤Éí·ÝÑéÖ¤Îó²î£¬£¬£¬£¬²»ÐèÒªÓû§½»»¥£¬£¬£¬£¬Õâ»áµ¼Ö¹¥»÷ÕßʹÓøÃÎó²îʵÏÖÀàËÆÓÚWannaCryµÄ·½·¨Èö²¥¡£¡£¡£¡£¡£¡£


Îó²îÑéÖ¤


ÔÝÎÞPOC¡¢EXP¡£¡£¡£¡£¡£¡£


ÐÞ¸´½¨Òé


ÏÖÔÚ£¬£¬£¬£¬Î¢Èí¹Ù·½ÒѾ­Ðû²¼²¹¶¡ÐÞ¸´ÁËÉÏÊöÎó²î£¬£¬£¬£¬½¨ÒéÓû§ÊµÊ±È·ÈÏÊÇ·ñÊܵ½Îó²îÓ°Ï죬£¬£¬£¬¾¡¿ì½ÓÄÉÐÞ²¹²½·¥£¬£¬£¬£¬ÒÔ×èֹDZÔÚµÄÇå¾²Íþв¡£¡£¡£¡£¡£¡£ÏëÒª¾ÙÐиüУ¬£¬£¬£¬Ö»Ðèתµ½ÉèÖáú¸üкÍÇå¾²¡úWindows¸üСú¼ì²é¸üУ¬£¬£¬£¬»òÕßÒ²¿ÉÒÔͨ¹ýÊÖ¶¯¾ÙÐиüС£¡£¡£¡£¡£¡£


Windows 7£¬£¬£¬£¬Windows 2008 R2£¬£¬£¬£¬Windows 2008

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0708


Windows 2003£¬£¬£¬£¬Windows XP
https://support.microsoft.com/zh-cn/help/4500705/customer-guidance-for-cve-2019-0708


²Î¿¼Á´½Ó


https://www.securityfocus.com/bid/108273/info
https://www.tenable.com/blog/critical-remote-code-execution-vulnerability-cve-2019-0708-addressed-in-patch-tuesday-updates
https://blogs.technet.microsoft.com/msrc/2019/05/14/prevent-a-worm-by-updating-remote-desktop-services-cve-2019-0708/?from=groupmessage&isappinstalled=0