漏洞名称
RDP Client远程代码执行漏洞
漏洞简述
微软10月8日推出了十月的安全更新,修复了Windows操作系统和相关产品系列中的60个常见漏洞和披露(CVE)。在这9个中,“ 严重 ” 分类为51个,“ 重要 ” 分类为51个。其中包括远程桌面客户端远程执行代码漏洞| CVE-2019-1333。
Windows Remote Desktop客户端在处理恶意制作的文件时,存在一个远程执行代码漏洞,使远程攻击者可以利用此漏洞并在受感染系统的上下文中执行任意代码。
要利用此漏洞,攻击者将需要通过社交工程,DNS中毒或使用中间人(MITM)技术来诱使用户连接到攻击者控制的服务器并控制受影响的系统,并且攻击者可能入侵合法服务器,在其上托管恶意代码,然后等待用户连接。
如果成功利用此漏洞,攻击者可以安装程序,查看,更改,删除数据,还可以创建具有完全用户权限的新帐户。
威胁等级
高危
受影响的系统
Microsoft Windows 10 Version 1607 for 32-bit SystemsMicrosoft Windows 10 Version 1607 for x64-based SystemsMicrosoft Windows 10 Version 1709 for ARM64-based SystemsMicrosoft Windows 10 Version 1803 for 32-bit SystemsMicrosoft Windows 10 Version 1803 for ARM64-based SystemsMicrosoft Windows 10 Version 1803 for x64-based SystemsMicrosoft Windows 10 Version 1809 for 32-bit SystemsMicrosoft Windows 10 Version 1809 for ARM64-based SystemsMicrosoft Windows 10 Version 1809 for x64-based SystemsMicrosoft Windows 10 Version 1903 for 32-bit SystemsMicrosoft Windows 10 Version 1903 for ARM64-based SystemsMicrosoft Windows 10 Version 1903 for x64-based SystemsMicrosoft Windows 10 for 32-bit SystemsMicrosoft Windows 10 for x64-based SystemsMicrosoft Windows 10 version 1703 for 32-bit SystemsMicrosoft Windows 10 version 1703 for x64-based SystemsMicrosoft Windows 10 version 1709 for 32-bit SystemsMicrosoft Windows 10 version 1709 for x64-based SystemsMicrosoft Windows 7 for 32-bit Systems SP1Microsoft Windows 7 for x64-based Systems SP1Microsoft Windows 8.1 for 32-bit SystemsMicrosoft Windows 8.1 for x64-based SystemsMicrosoft Windows RT 8.1Microsoft Windows Server 1803Microsoft Windows Server 1903Microsoft Windows Server 2008 R2 for Itanium-based Systems SP1Microsoft Windows Server 2008 R2 for x64-based Systems SP1Microsoft Windows Server 2008 for 32-bit Systems SP2Microsoft Windows Server 2008 for Itanium-based Systems SP2Microsoft Windows Server 2008 for x64-based Systems SP2Microsoft Windows Server 2012Microsoft Windows Server 2012 R2Microsoft Windows Server 2016Microsoft Windows Server 2019
漏洞利用
暂未公开利用和验证
修复建议
微软官方已给出针对此漏洞的安全更新补丁:
https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-1333
