΢Èí | ¶à¸ö0dayÎó²îͨ¸æ
Ðû²¼Ê±¼ä 2020-05-210x00 Îó²î¸ÅÊö
|
²úÆ· |
CVE ID |
Àà ÐÍ |
Îó²îÆ·¼¶ |
Ô¶³ÌʹÓà |
Ó°Ïì¹æÄ£ |
|
Windows |
CVE-2020-0915 |
EOA |
¸ßΣ |
|
Windows |
|
CVE-2020-0986 |
EOA |
¸ßΣ |
|
||
|
CVE-2020-0916 |
EOA |
¸ßΣ |
|
||
|
CVE-2020-0915 |
II |
µÍΣ |
|
||
|
ÔÝÎÞ |
AE |
¸ßΣ |
|
0x01 Îó²îÏêÇé
2020Äê5ÔÂ19ÈÕ£¬£¬£¬£¬£¬Ç÷ÊÆ¿Æ¼¼£¨ZDI£©µÄÇ徲ר¼ÒÅû¶ÁËMicrosoft WindowsÖÐÎå¸ö0dayÎó²î£¬£¬£¬£¬£¬¹¥»÷Õß¿ÉÒÔʹÓÃÕâЩÎó²îÀ´Éý¼¶WindowsÅÌËã»úÉϵÄÌØÈ¨¡£¡£¡£¡£¡£¡£
CVE-2020-0916/CVE-2020-0986/CVE-2020-0915 ÊÇMicrosoft Windows splwow64²»ÊÜÐÅÈεÄÖ¸Õëɨ³ýÒýÓÃÌØÈ¨Éý¼¶Îó²î£¬£¬£¬£¬£¬CVSSÆÀ·Ö7.0¡£¡£¡£¡£¡£¡£¿£¿£¿Éµ¼Ö¹¥»÷ÕßÔÚÊÜÓ°ÏìϵͳÉÏÌáÉýȨÏÞ¡£¡£¡£¡£¡£¡£¸ÃÎó²îÓ°ÏìÓû§Ä£Ê½´òÓ¡»úÇý¶¯³ÌÐòÖ÷»úÀú³Ìsplwow64.exe£¬£¬£¬£¬£¬²¢ÇÒÊÇÓÉÓÚȱÉÙ¶ÔÓû§ÌṩµÄÊäÈëÑéÖ¤ËùÒýÆðµÄ¡£¡£¡£¡£¡£¡£¹¥»÷ÕßÊ×ÏÈÐèÒª»ñµÃ¶ÔϵͳµÄµÍ»á¼ûȨÏ޲ŻªÊ¹ÓÃÕâЩÎó²î£¬£¬£¬£¬£¬ÈçʹÓÃÀֳɣ¬£¬£¬£¬£¬¿Éµ¼Ö¹¥»÷ÕßÔÚÄ¿½ñÓû§µÄÉÏÏÂÎÄÖÐÒÔÖеÈÍêÕûÐÔÖ´ÐдúÂë¡£¡£¡£¡£¡£¡£
Õâ¸öÓû§Ä£Ê½ÏµĴòÓ¡»úÇý¶¯Ö÷»úÀú³Ìsplwow64.exe »¹Ò×ÊÜÒ»¸öµÍΣµÄÐÅÏ¢×ß©Îó²îÓ°Ïì¡£¡£¡£¡£¡£¡£¸ÃÎó²îµÄ±àºÅÊÇCVE-2020-0915£¬£¬£¬£¬£¬CVSSÆÀ·Ö2.5¡£¡£¡£¡£¡£¡£¸ÃÎÊÌâÊÇÓÉÓÚÔÚ½«Óû§ÌṩµÄÖµ½âÒýÓÃΪָÕë֮ǰ£¬£¬£¬£¬£¬È±·¦¶ÔÓû§ÊäÈëÖµµÄ׼ȷÑéÖ¤¡£¡£¡£¡£¡£¡£
ÁíÍâÒ»¸öÎó²îÊÇMicrosoft Windows WLANÅþÁ¬ÉèÖÃÎļþȱÉÙÉí·ÝÑéÖ¤ÌØÈ¨Éý¼¶Îó²î£¬£¬£¬£¬£¬ CVSSÆÀ·Ö7.0£¬£¬£¬£¬£¬ÏÖÔÚÉÐδ·ÖÅÉCVE±àºÅ¡£¡£¡£¡£¡£¡£ÓÉÓÚ²»×¼È·µØ´¦Öóͷ£WLANÅþÁ¬ÉèÖÃÎļþ£¬£¬£¬£¬£¬¹¥»÷Õß¿ÉÒÔ½¨Éè¶ñÒâÉèÖÃÎļþÀ´Ð¹Â¶ÅÌËã»úÕÊ»§µÄƾ֤¡£¡£¡£¡£¡£¡£
0x02 ´¦Öóͷ£½¨Òé
ÏÖÔÚ³§ÉÌ»¹Î´Ðû²¼²¹¶¡¡£¡£¡£¡£¡£¡£
ÔÝʱ²½·¥£º×î´óÏ޶ȵØïÔÌÓëЧÀ͵Ľ»»¥£¬£¬£¬£¬£¬½öÔÊÐíÓë¿ÉÐŵĿͻ§¶ËºÍЧÀÍÆ÷ÓëÆä¾ÙÐÐͨѶ¡£¡£¡£¡£¡£¡£
0x03 Ïà¹ØÐÂÎÅ
https://securityaffairs.co/wordpress/103507/hacking/microsoft-windows-zero-days.html
0x04 ²Î¿¼Á´½Ó
https://www.zerodayinitiative.com/advisories/published/
0x05 ʱ¼äÏß
2020-05-19 ZDIÐû²¼Îó²î
2020-05-21 VSRCÐû²¼Îó²îͨ¸æ


¾©¹«Íø°²±¸11010802024551ºÅ