MicroSoft |4月多个安全漏洞通告

发布时间 2020-04-16

0x00 漏洞概述


产品

CVE ID

类 型

漏洞等级

远程利用

Windows OneDrive

CVE-2020-0935

EoP

严重

Adobe Font Manager

CVE-2020-1020

RCE

严重

Adobe Font Manager

CVE-2020-0938

RCE

严重


0x01 漏洞详情




MicroSoft于周二发布了4月安全更新补丁,发布了针对113个漏洞的修复程序。在这些漏洞中,有15个被分类为严重,93个被分类为重要,3个被分类为中等,2个被归类为低危。MicroSoft表示有两个0day先前已被公开披露,包括Windows OneDrive特权提升漏洞(CVE-2020-0935)和Adobe Font Manager库远程实行代码漏洞(CVE-2020-1020),并且后者和另一个漏洞(Adobe Font Manager库远程实行代码漏洞CVE-2020-0938)已在野外被利用。


CVE-2020-0935 是Windows OneDrive 权限提升漏洞。OneDrive for Windows Desktop 应用程序无法正确处理符号链接时,存在特权提升漏洞。成功利用此漏洞的攻击者可能会覆盖导致升高状态的目标文件。要利用此漏洞,攻击者首先必须登录系统。然后,攻击者可以运行一个为利用此漏洞而经特殊设计的应用程序,从而控制受影响的系统。


CVE-2020-1020和CVE-2020-0938是Adobe字体管理器库远程代码实行漏洞。当 Windows Adobe Type Manager 库未正确处理经特殊设计的多主机 Adobe Type 1 PostScript 格式字体时,微软 Windows 中存在远程代码实行漏洞。对于除 Windows 10 之外的所有系统,成功利用此漏洞的攻击者可以远程实行代码。对于运行 Windows 10 的系统,成功利用此漏洞的攻击者可以利用受限的特权和功能在 AppContainer 沙盒上下文中实行代码。攻击者可随后安装程序;查看、更改或删除数据;或者创建拥有完全用户权限的新帐户。攻击者可通过多种方式利用此漏洞,包括诱使用户打开经特殊设计文档或在 Windows 预览窗格中查看。


0x02 影响范围

漏洞编号

受影响产品版本

CVE-2020-0935

OneDrive for Windows

CVE-2020-1020

CVE-2020-0938

Windows 10 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1709 for 32-bit Systems

Windows 10 Version 1709 for ARM64-based Systems

Windows 10 Version 1709 for x64-based Systems

Windows 10 Version 1803 for 32-bit Systems

Windows 10 Version 1803 for ARM64-based Systems

Windows 10 Version 1803 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1903 for 32-bit Systems

Windows 10 Version 1903 for ARM64-based Systems

Windows 10 Version 1903 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 7 for 32-bit Systems Service Pack 1

Windows 7 for x64-based Systems Service Pack 1

Windows 8.1 for 32-bit systems

Windows 8.1 for x64-based systems

Windows RT 8.1

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for Itanium-Based Systems Service Pack 2

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2012

Windows Server 2012 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 R2 (Server Core installation)

Windows Server 2016

Windows Server 2016 (Server Core installation)

Windows Server 2019

Windows Server 2019 (Server Core installation)

Windows Server, version 1803 (Server Core Installation)

Windows Server, version 1903 (Server Core installation)

Windows Server, version 1909 (Server Core installation)


0x03 处置建议


MicroSoft官方已经发布补丁修复了上述漏洞,下载链接:

https://portal.msrc.microsoft.com/zh-cn/security-guidance/advisory/CVE-2020-0935

https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2020-1020

https://portal.msrc.microsoft.com/zh-CN/security-guidance/advisory/CVE-2020-0938


0x04 相关资讯


https://www.bleepingcomputer.com/news/microsoft/microsoft-april-2020-patch-tuesday-fixes-3-zero-days-15-critical-flaws/


0x05 参考链接


https://portal.msrc.microsoft.com/zh-cn/security-guidance


0x06 时间线


2020-04-14 MicroSoft官方发布漏洞