【威胁通告】微软发布3月补丁修复68个安全问题

微软于周二发布了3月安全更新补丁,修复了68个从简单的欺骗攻击到远程执行代码的安全问题,产品涉及Active Directory、Adobe Flash Player、Azure、Internet Explorer、Microsoft Browsers、Microsoft Edge、Microsoft Graphics Component、Microsoft JET Database Engine、Microsoft Office、Microsoft Office SharePoint、Microsoft Scripting Engine、Microsoft Windows、Microsoft XML、NuGet、Servicing Stack Updates、Skype for Business、Team Foundation Server、Visual Studio、Windows DHCP Client、Windows Hyper-V、Windows Kernel、Windows Kernel-Mode Drivers、Windows Print Spooler Components、Windows SMB Server以及Windows Subsystem for Linux。

漏洞列表

相关信息如下:

产品CVE 编号CVE 标题严重程度
Active DirectoryCVE-2019-0683Active Directory 特权提升漏洞Important
Adobe Flash PlayerADV190008March 2019 Adobe Flash 安全更新Low
AzureCVE-2019-0816Azure SSH Keypairs 安全功能绕过漏洞Moderate
Internet ExplorerCVE-2019-0761Internet Explorer 安全功能绕过漏洞Low
Internet ExplorerCVE-2019-0763Internet Explorer 内存破坏漏洞Moderate
Internet ExplorerCVE-2019-0768Internet Explorer 安全功能绕过漏洞Important
Microsoft BrowsersCVE-2019-0762Microsoft Browsers 安全功能绕过漏洞Low
Microsoft BrowsersCVE-2019-0780Microsoft Browser 内存破坏漏洞Important
Microsoft EdgeCVE-2019-0612Microsoft Edge 安全功能绕过漏洞Important
Microsoft EdgeCVE-2019-0678Microsoft Edge 特权提升漏洞Important
Microsoft EdgeCVE-2019-0779Microsoft Edge 内存破坏漏洞Important
Microsoft Graphics ComponentCVE-2019-0774Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-0797Win32k 特权提升漏洞Important
Microsoft Graphics ComponentCVE-2019-0808Win32k 特权提升漏洞Important
Microsoft Graphics ComponentCVE-2019-0614Windows GDI 信息泄露漏洞Important
Microsoft JET Database EngineCVE-2019-0617Jet Database Engine 远程代码执行漏洞Important
Microsoft OfficeCVE-2019-0748Microsoft Office Access Connectivity Engine 远程代码执行漏洞Important
Microsoft Office SharePointCVE-2019-0778Microsoft Office SharePoint XSS VulnerabilityImportant
Microsoft Scripting EngineCVE-2019-0609Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0611Chakra Scripting Engine 内存破坏漏洞Low
Microsoft Scripting EngineCVE-2019-0639Scripting Engine 内存破坏漏洞Moderate
Microsoft Scripting EngineCVE-2019-0746Chakra Scripting Engine 内存破坏漏洞Important
Microsoft Scripting EngineCVE-2019-0769Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0770Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0771Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0772Windows VBScript Engine 远程代码执行漏洞Important
Microsoft Scripting EngineCVE-2019-0773Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0783Scripting Engine 内存破坏漏洞Important
Microsoft Scripting EngineCVE-2019-0592Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0665Windows VBScript Engine 远程代码执行漏洞Important
Microsoft Scripting EngineCVE-2019-0666Windows VBScript Engine 远程代码执行漏洞Critical
Microsoft Scripting EngineCVE-2019-0667Windows VBScript Engine 远程代码执行漏洞Critical
Microsoft Scripting EngineCVE-2019-0680Scripting Engine 内存破坏漏洞Critical
Microsoft WindowsCVE-2019-0754Windows 拒绝服务漏洞Important
Microsoft WindowsCVE-2019-0765Comctl32 远程代码执行漏洞Important
Microsoft WindowsCVE-2019-0766Microsoft Windows 特权提升漏洞Important
Microsoft WindowsCVE-2019-0784Windows ActiveX 远程代码执行漏洞Critical
Microsoft WindowsADV190009SHA-2 Code Sign Support AdvisoryUnknown
Microsoft WindowsADV190010Best Practices Regarding Sharing of a Single User Account Across Multiple UsersUnknown
Microsoft WindowsCVE-2019-0603Windows Deployment Services TFTP Server 远程代码执行漏洞Critical
Microsoft XMLCVE-2019-0756MS XML 远程代码执行漏洞Critical
NuGetCVE-2019-0757NuGet Package Manager Tampering VulnerabilityImportant
Servicing Stack UpdatesADV990001Latest Servicing Stack UpdatesCritical
Skype for BusinessCVE-2019-0798Skype for Business and Lync 欺骗漏洞Important
Team Foundation ServerCVE-2019-0777Team Foundation Server Cross-site Scripting VulnerabilityLow
Visual StudioCVE-2019-0809Visual Studio 远程代码执行漏洞Important
Windows DHCP ClientCVE-2019-0697Windows DHCP Client 远程代码执行漏洞Critical
Windows DHCP ClientCVE-2019-0698Windows DHCP Client 远程代码执行漏洞Critical
Windows DHCP ClientCVE-2019-0726Windows DHCP Client 远程代码执行漏洞Critical
Windows Hyper-VCVE-2019-0690Windows Hyper-V 拒绝服务漏洞Important
Windows Hyper-VCVE-2019-0695Windows Hyper-V 拒绝服务漏洞Important
Windows Hyper-VCVE-2019-0701Windows Hyper-V 拒绝服务漏洞Important
Windows KernelCVE-2019-0755Windows Kernel 信息泄露漏洞Important
Windows KernelCVE-2019-0767Windows Kernel 信息泄露漏洞Important
Windows KernelCVE-2019-0775Windows Kernel 信息泄露漏洞Important
Windows KernelCVE-2019-0782Windows Kernel 信息泄露漏洞Important
Windows KernelCVE-2019-0696Windows Kernel 特权提升漏洞Important
Windows KernelCVE-2019-0702Windows Kernel 信息泄露漏洞Important
Windows Kernel-Mode DriversCVE-2019-0776Win32k 信息泄露漏洞Important
Windows Print Spooler ComponentsCVE-2019-0759Windows Print Spooler 信息泄露漏洞Important
Windows SMB ServerCVE-2019-0703Windows SMB 信息泄露漏洞Important
Windows SMB ServerCVE-2019-0704Windows SMB 信息泄露漏洞Important
Windows SMB ServerCVE-2019-0821Windows SMB 信息泄露漏洞Important
Windows Subsystem for LinuxCVE-2019-0682Windows Subsystem for Linux 特权提升漏洞Important
Windows Subsystem for LinuxCVE-2019-0689Windows Subsystem for Linux 特权提升漏洞Important
Windows Subsystem for LinuxCVE-2019-0692Windows Subsystem for Linux 特权提升漏洞Important
Windows Subsystem for LinuxCVE-2019-0693Windows Subsystem for Linux 特权提升漏洞Important
Windows Subsystem for LinuxCVE-2019-0694Windows Subsystem for Linux 特权提升漏洞Important

 

修复建议

微软官方已经发布更新补丁,请及时进行补丁更新。

 

附件下载

微软发布3月补丁修复68个安全问题

Spread the word. Share this post!

Meet The Author

Leave Comment