【威胁通告】微软发布7月补丁修复79个安全问题

微软于周二发布了7月安全更新补丁,修复了79个从简单的欺骗攻击到远程执行代码的安全问题

综述

微软于周二发布了7月安全更新补丁,修复了79个从简单的欺骗攻击到远程执行代码的安全问题,产品涉及.NET Framework、ASP.NET、Azure、Azure DevOps、Internet Explorer、Microsoft Browsers、Microsoft Exchange Server、Microsoft Graphics Component、Microsoft Office、Microsoft Office SharePoint、Microsoft Scripting Engine、Microsoft Windows、Microsoft Windows DNS、Open Source Software、Servicing Stack Updates、SQL Server、Visual Studio、Windows Kernel、Windows Media、Windows RDP以及Windows Shell。

相关信息如下:

产品CVE 编号CVE 标题严重程度
.NET FrameworkCVE-2019-1113.NET Framework 远程代码执行漏洞Critical
.NET FrameworkCVE-2019-1006WCF/WIF SAML Token Authentication Bypass VulnerabilityImportant
.NET FrameworkCVE-2019-1083.NET 拒绝服务漏洞Important
ASP.NETCVE-2019-1075ASP.NET Core 欺骗漏洞Moderate
AzureCVE-2019-0962Azure Automation 特权提升漏洞Important
Azure DevOpsCVE-2019-1072Azure DevOps Server and Team Foundation Server 远程代码执行漏洞Critical
Azure DevOpsCVE-2019-1076Team Foundation Server Cross-site Scripting VulnerabilityImportant
Internet ExplorerCVE-2019-1063Internet Explorer 内存破坏漏洞Critical
Microsoft BrowsersCVE-2019-1104Microsoft Browser 内存破坏漏洞Critical
Microsoft Exchange ServerCVE-2019-1136Microsoft Exchange Server 特权提升漏洞Important
Microsoft Exchange ServerCVE-2019-1137Microsoft Exchange Server 欺骗漏洞Important
Microsoft Exchange ServerADV190021Outlook on the web 跨站脚本漏洞Important
Microsoft Graphics ComponentCVE-2019-1093DirectWrite 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1094Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1095Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1096Win32k 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1097DirectWrite 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1098Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1100Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1101Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1102GDI+ 远程代码执行漏洞Critical
Microsoft Graphics ComponentCVE-2019-1116Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-1117DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1118DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1119DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1120DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1121DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1122DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1123DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1124DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1127DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-1128DirectWrite 远程代码执行漏洞Important
Microsoft Graphics ComponentCVE-2019-0999DirectX 特权提升漏洞Important
Microsoft OfficeCVE-2019-1109Microsoft Office 欺骗漏洞Important
Microsoft OfficeCVE-2019-1110Microsoft Excel 远程代码执行漏洞Important
Microsoft OfficeCVE-2019-1111Microsoft Excel 远程代码执行漏洞Important
Microsoft OfficeCVE-2019-1112Microsoft Excel 信息泄露漏洞Important
Microsoft OfficeCVE-2019-1084Microsoft Exchange 信息泄露漏洞Important
Microsoft Office SharePointCVE-2019-1134Microsoft Office SharePoint XSS VulnerabilityImportant
Microsoft Scripting EngineCVE-2019-1056Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1059Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1062Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1092Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1103Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1106Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1107Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1001Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-1004Scripting Engine 内存破坏漏洞Critical
Microsoft WindowsCVE-2019-0865SymCrypt 拒绝服务漏洞Important
Microsoft WindowsCVE-2019-0887Remote Desktop Services 远程代码执行漏洞Important
Microsoft WindowsCVE-2019-0966Windows Hyper-V 拒绝服务漏洞Important
Microsoft WindowsCVE-2019-0975ADFS 安全功能绕过漏洞Important
Microsoft WindowsCVE-2019-1126ADFS 安全功能绕过漏洞Important
Microsoft WindowsCVE-2019-0785Windows DHCP Server 远程代码执行漏洞Critical
Microsoft WindowsCVE-2019-0880Microsoft splwow64 特权提升漏洞Important
Microsoft WindowsCVE-2019-1037Windows Error Reporting 特权提升漏洞Important
Microsoft WindowsCVE-2019-1067Windows Kernel 特权提升漏洞Important
Microsoft WindowsCVE-2019-1074Microsoft Windows 特权提升漏洞Important
Microsoft WindowsCVE-2019-1082Microsoft Windows 特权提升漏洞Important
Microsoft WindowsCVE-2019-1091Microsoft unistore.dll 信息泄露漏洞Important
Microsoft WindowsCVE-2019-1129Windows 特权提升漏洞Important
Microsoft WindowsCVE-2019-1130Windows 特权提升漏洞Important
Microsoft Windows DNSCVE-2019-0811Windows DNS Server 拒绝服务漏洞Important
Microsoft Windows DNSCVE-2019-1090Windows dnsrlvr.dll 特权提升漏洞Important
Open Source SoftwareCVE-2018-15664Docker 特权提升漏洞Important
Servicing Stack UpdatesADV990001Latest Servicing Stack UpdatesCritical
SQL ServerCVE-2019-1068Microsoft SQL Server 远程代码执行漏洞Important
Visual StudioCVE-2019-1077Visual Studio 特权提升漏洞Important
Visual StudioCVE-2019-1079Visual Studio 信息泄露漏洞Important
Windows KernelCVE-2019-1071Windows Kernel 信息泄露漏洞Important
Windows KernelCVE-2019-1073Windows Kernel 信息泄露漏洞Important
Windows KernelCVE-2019-1089Windows RPCSS 特权提升漏洞Important
Windows KernelCVE-2019-1132Win32k 特权提升漏洞Important
Windows MediaCVE-2019-1085Windows WLAN Service 特权提升漏洞Important
Windows MediaCVE-2019-1086Windows Audio Service 特权提升漏洞Important
Windows MediaCVE-2019-1087Windows Audio Service 特权提升漏洞Important
Windows MediaCVE-2019-1088Windows Audio Service 特权提升漏洞Important
Windows RDPCVE-2019-1108Remote Desktop Protocol Client 信息泄露漏洞Important
Windows ShellCVE-2019-1099Windows GDI 信息泄露漏洞Important

修复建议

微软官方已经发布更新补丁,请及时进行补丁更新。

附件下载

微软发布7月补丁修复79个安全问题

Spread the word. Share this post!

Meet The Author

Leave Comment