首頁 > 安全研究 > 安全通報 > 安全通告

微軟多個安全漏洞通告

發布時間 2020-08-12

0x00 漏洞概述

微軟于周二發布了8月安全更新補丁，修復了包括2個0day在內的120個漏洞，涉及Internet Explorer（IE）、Office、Microsoft Edge、Windows Media等眾多組件和軟件。值得注意的是，Windows欺騙漏洞（CVE-2020-1464）和IE腳本引擎內存破壞漏洞（CVE-2020-1380）已被檢測到在野利用，此外還有四個遠程代碼執行漏洞（CVE-2020-1585、CVE-2020-1568、CVE-2020-1567、CVE-2020-1570）和三個權限提升漏洞（CVE-2020-1472、CVE-2020-1480、CVE-2020-1529），需要重點關注，詳見表格：

產品	CVE ID	類型	漏洞等級	遠程利用
Windows	CVE-2020-1464	Spoofing	高危	是
Internet Explorer	CVE-2020-1380	RCE	嚴重	是
Windows	CVE-2020-1472	EOP	嚴重	否
Windows	CVE-2020-1585	RCE	嚴重	是
Microsoft Edge	CVE-2020-1568	RCE	嚴重	是
Internet Explorer	CVE-2020-1567	RCE	嚴重	是
Internet Explorer	CVE-2020-1570	RCE	嚴重	是
Windows	CVE-2020-1480	EOP	高危	否
Windows	CVE-2020-1529	EOP	高危	否

0x01 漏洞詳情

Windows欺騙漏洞（CVE-2020-1464）

Windows在驗證簽名時，存在一個欺騙漏洞。成功利用此漏洞的攻擊者可繞過安全特性，從而加載錯誤簽名的文件。

IE腳本引擎內存損壞漏洞（CVE-2020-1380）

IE腳本引擎在處理內存中的對象時，存在一個遠程代碼執行漏洞。攻擊者可通過誘導用戶訪問特制網站或通過誘導用戶打開嵌入標記為“初始化安全”的ActiveX控件的應用程序或Microsoft Office文檔等方式來利用此漏洞，此外，攻擊者還可以通過攻擊脆弱網站、向內容或廣告服務提供商添加特制內容來利用此漏洞，該漏洞導致可以在當前用戶的上下文中執行任意代碼的方式損壞內存。

NetLogon權限提升漏洞（CVE-2020-1472）

NetLogon中存在一個權限提升漏洞。未經身份認證的攻擊者可通過使用Netlogon遠程協議（MS-NRPC）連接域控制器來利用此漏洞。成功利用此漏洞的攻擊者可獲得域管理員訪問權限。

Windows編碼解碼庫遠程代碼執行漏洞（CVE-2020-1585）

當 Microsoft Windows Codecs 庫處理內存中的對象時，存在遠程執行代碼漏洞。成功利用此漏洞的攻擊者可以控制受影響的系統。

Microsoft Edge PDF遠程執行代碼漏洞（CVE-2020-1568）

Microsoft Edge PDF 閱讀器在處理內存中的對象時，存在遠程執行代碼漏洞。遠程攻擊者通過構造包含惡意內容的PDF頁面，并誘使用戶使用Edge瀏覽器打開，成功利用此漏洞的攻擊者可在受影響的系統上以相同的用戶權限執行任意代碼。

MSHTML引擎遠程執行代碼漏洞（CVE-2020-1567）

該漏洞存在于MSHTML中的VBScript中，因為對VBScript的一個回調會刪除對象，而對該塊空間的引用仍然保留在堆棧中，如果調用該引用，則會觸發UAF，最終可以造成遠程代碼執行。

IE腳本引擎內存損壞漏洞（CVE-2020-1570）

該漏洞源于javascript未初始化堆棧內存，var對象通過GetValue來進行初始化，如果第二個參數為對象，則GetValue只初始化第三個參數值，造成第二個參數未初始化，最終導致遠程代碼執行。

Windows GDI 權限提升漏洞（CVE-2020-1480/CVE-2020-1529）

Windows 圖形設備接口 (GDI) 處理內存中的對象的方式中存在特權提升漏洞。成功利用此漏洞的攻擊者可以在內核模式下執行任意代碼。

0x02 影響范圍

漏洞編號	受影響產品版本
CVE-2020-1464	Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for ARM64-based Systems Windows 10 Version 1709 for x64-based Systems Windows 10 Version 1803 for 32-bit Systems Windows 10 Version 1803 for ARM64-based Systems Windows 10 Version 1803 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for ARM64-based Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1903 for 32-bit Systems Windows 10 Version 1903 for ARM64-based Systems Windows 10 Version 1903 for x64-based Systems Windows 10 Version 1909 for 32-bit Systems Windows 10 Version 1909 for ARM64-based Systems Windows 10 Version 1909 for x64-based Systems Windows 10 Version 2004 for 32-bit Systems Windows 10 Version 2004 for ARM64-based Systems Windows 10 Version 2004 for x64-based Systems Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows RT 8.1 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server, version 1903 (Server Core installation) Windows Server, version 1909 (Server Core installation) Windows Server, version 2004 (Server Core installation)
CVE-2020-1380	Internet Explorer 11
CVE-2020-1472	Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server, version 1903 (Server Core installation) Windows Server, version 1909 (Server Core installation) Windows Server, version 2004 (Server Core installation)
CVE-2020-1585	Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for ARM64-based Systems Windows 10 Version 1709 for x64-based Systems Windows 10 Version 1803 for 32-bit Systems Windows 10 Version 1803 for ARM64-based Systems Windows 10 Version 1803 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for ARM64-based Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1903 for 32-bit Systems Windows 10 Version 1903 for ARM64-based Systems Windows 10 Version 1903 for x64-based Systems Windows 10 Version 1909 for 32-bit Systems Windows 10 Version 1909 for ARM64-based Systems Windows 10 Version 1909 for x64-based Systems Windows 10 Version 2004 for 32-bit Systems Windows 10 Version 2004 for ARM64-based Systems Windows 10 Version 2004 for x64-based Systems
CVE-2020-1568	Microsoft Edge (EdgeHTML-based)
CVE-2020-1567 CVE-2020-1570	Internet Explorer 11 Internet Explorer 9
CVE-2020-1480	Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for ARM64-based Systems Windows 10 Version 1709 for x64-based Systems Windows 10 Version 1803 for 32-bit Systems Windows 10 Version 1803 for ARM64-based Systems Windows 10 Version 1803 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for ARM64-based Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1903 for 32-bit Systems Windows 10 Version 1903 for ARM64-based Systems Windows 10 Version 1903 for x64-based Systems Windows 10 Version 1909 for 32-bit Systems Windows 10 Version 1909 for ARM64-based Systems Windows 10 Version 1909 for x64-based Systems Windows 10 Version 2004 for 32-bit Systems Windows 10 Version 2004 for ARM64-based Systems Windows 10 Version 2004 for x64-based Systems Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server, version 1903 (Server Core installation) Windows Server, version 1909 (Server Core installation) Windows Server, version 2004 (Server Core installation)
CVE-2020-1529	Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1709 for 32-bit Systems Windows 10 Version 1709 for ARM64-based Systems Windows 10 Version 1709 for x64-based Systems Windows 10 Version 1803 for 32-bit Systems Windows 10 Version 1803 for ARM64-based Systems Windows 10 Version 1803 for x64-based Systems Windows 10 Version 1809 for 32-bit Systems Windows 10 Version 1809 for ARM64-based Systems Windows 10 Version 1809 for x64-based Systems Windows 10 Version 1903 for 32-bit Systems Windows 10 Version 1903 for ARM64-based Systems Windows 10 Version 1903 for x64-based Systems Windows 10 Version 1909 for 32-bit Systems Windows 10 Version 1909 for ARM64-based Systems Windows 10 Version 1909 for x64-based Systems Windows 10 Version 2004 for 32-bit Systems Windows 10 Version 2004 for ARM64-based Systems Windows 10 Version 2004 for x64-based Systems Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows RT 8.1 Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) Windows Server 2012 Windows Server 2012 (Server Core installation) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core installation) Windows Server 2016 Windows Server 2016 (Server Core installation) Windows Server 2019 Windows Server 2019 (Server Core installation) Windows Server, version 1903 (Server Core installation) Windows Server, version 1909 (Server Core installation) Windows Server, version 2004 (Server Core installation)

0x03 處置建議

微軟官方已經發布補丁，下載鏈接：

https://portal.msrc.microsoft.com/en-us/security-guidance

0x04 相關新聞

https://www.bleepingcomputer.com/news/microsoft/microsoft-august-2020-patch-tuesday-fixes-2-zero-days-120-flaws/

0x05 參考鏈接

https://portal.msrc.microsoft.com/en-us/security-guidance

0x06 時間線

2020-08-11 微軟官方發布漏洞

2020-08-12 VSRC發布漏洞通告

7*24小時服務熱線

400-624-3900

官方微信

官方微博

法律聲明

網絡安全防護

網絡安全檢測

應用安全

數據安全

安全管理

云安全

工控安全

移動及終端安全

密碼應用安全

大模型應用安全

專業安全服務

安全運營中心

知白學院

威脅情報中心

安全團隊

售后服務

公司概況

新聞動態

技術專題

人才招聘

投資者關系

資源中心

聯系我們

安全研究

微軟多個安全漏洞通告

關于我們

解決方案

聯系我們

7*24小時服務熱線