【威胁通告】微软发布5月补丁修复82个安全问题

微软于周二发布了5月安全更新补丁,修复了82个从简单的欺骗攻击到远程执行代码的安全问题,产品涉及.NET Core、.NET Framework、Adobe Flash Player、Azure、Internet Explorer、Kerberos、Microsoft Browsers、Microsoft Dynamics、Microsoft Edge、Microsoft Graphics Component、Microsoft JET Database Engine、Microsoft Office、Microsoft Office SharePoint、Microsoft Scripting Engine、Microsoft Windows、NuGet、Servicing Stack Updates、Skype for Android、SQL Server、Team Foundation Server、Windows DHCP Server、Windows Diagnostic Hub、Windows Kernel、Windows NDIS以及Windows RDP。

相关信息

相关信息如下:

产品CVE 编号CVE 标题严重程度
.NET CoreCVE-2019-0980.Net Framework and .Net Core 拒绝服务漏洞Important
.NET CoreCVE-2019-0981.Net Framework and .Net Core 拒绝服务漏洞Important
.NET CoreCVE-2019-0982ASP.NET Core 拒绝服务漏洞Important
.NET FrameworkCVE-2019-0820.NET Framework and .NET Core 拒绝服务漏洞Important
.NET FrameworkCVE-2019-0864.NET Framework 拒绝服务漏洞Important
Adobe Flash PlayerADV190012May 2019 Adobe Flash 安全更新Critical
AzureCVE-2019-1000Microsoft Azure AD Connect 特权提升漏洞Important
Internet ExplorerCVE-2019-0921Internet Explorer 欺骗漏洞Important
Internet ExplorerCVE-2019-0929Internet Explorer 内存破坏漏洞Critical
Internet ExplorerCVE-2019-0930Internet Explorer 信息泄露漏洞Important
Internet ExplorerCVE-2019-0995Internet Explorer 安全功能绕过漏洞Important
KerberosCVE-2019-0734Windows 特权提升漏洞Important
Microsoft BrowsersCVE-2019-0940Microsoft Browser 内存破坏漏洞Critical
Microsoft DynamicsCVE-2019-1008Microsoft Dynamics On-Premise Security Feature BypassImportant
Microsoft EdgeCVE-2019-0926Microsoft Edge 内存破坏漏洞Critical
Microsoft EdgeCVE-2019-0938Microsoft Edge 特权提升漏洞Important
Microsoft Graphics ComponentCVE-2019-0882Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-0892Win32k 特权提升漏洞Important
Microsoft Graphics ComponentCVE-2019-0903GDI+ 远程代码执行漏洞Critical
Microsoft Graphics ComponentCVE-2019-0961Windows GDI 信息泄露漏洞Important
Microsoft Graphics ComponentCVE-2019-0758Windows GDI 信息泄露漏洞Important
Microsoft JET Database EngineCVE-2019-0893Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0894Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0895Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0896Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0897Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0898Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0899Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0900Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0901Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0902Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0889Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0890Jet Database Engine 远程代码执行漏洞Important
Microsoft JET Database EngineCVE-2019-0891Jet Database Engine 远程代码执行漏洞Important
Microsoft OfficeCVE-2019-0945Microsoft Office Access Connectivity Engine 远程代码执行漏洞Important
Microsoft OfficeCVE-2019-0946Microsoft Office Access Connectivity Engine 远程代码执行漏洞Important
Microsoft OfficeCVE-2019-0947Microsoft Office Access Connectivity Engine 远程代码执行漏洞Important
Microsoft OfficeCVE-2019-0953Microsoft Word 远程代码执行漏洞Critical
Microsoft Office SharePointCVE-2019-0956Microsoft SharePoint Server 信息泄露漏洞Important
Microsoft Office SharePointCVE-2019-0957Microsoft SharePoint 特权提升漏洞Important
Microsoft Office SharePointCVE-2019-0958Microsoft SharePoint 特权提升漏洞Important
Microsoft Office SharePointCVE-2019-0963Microsoft Office SharePoint XSS VulnerabilityImportant
Microsoft Office SharePointCVE-2019-0949Microsoft SharePoint 欺骗漏洞Important
Microsoft Office SharePointCVE-2019-0950Microsoft SharePoint 欺骗漏洞Important
Microsoft Office SharePointCVE-2019-0951Microsoft SharePoint 欺骗漏洞Important
Microsoft Office SharePointCVE-2019-0952Microsoft SharePoint Server 远程代码执行漏洞Important
Microsoft Scripting EngineCVE-2019-0884Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0911Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0912Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0913Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0914Chakra Scripting Engine 内存破坏漏洞Moderate
Microsoft Scripting EngineCVE-2019-0915Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0916Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0917Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0918Scripting Engine 内存破坏漏洞Moderate
Microsoft Scripting EngineCVE-2019-0922Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0923Chakra Scripting Engine 内存破坏漏洞Important
Microsoft Scripting EngineCVE-2019-0924Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0925Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0927Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0933Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft Scripting EngineCVE-2019-0937Chakra Scripting Engine 内存破坏漏洞Critical
Microsoft WindowsCVE-2019-0863Windows Error Reporting 特权提升漏洞Important
Microsoft WindowsCVE-2019-0886Windows Hyper-V 信息泄露漏洞Important
Microsoft WindowsCVE-2019-0942Unified Write Filter 特权提升漏洞Important
Microsoft WindowsCVE-2019-0733Windows Defender Application Control 安全功能绕过漏洞Important
Microsoft WindowsCVE-2019-0885Windows OLE 远程代码执行漏洞Important
Microsoft WindowsCVE-2019-0931Windows Storage Service 特权提升漏洞Important
Microsoft WindowsADV190013Microsoft Guidance to mitigate Microarchitectural Data Sampling vulnerabilitiesImportant
Microsoft WindowsCVE-2019-0936Windows 特权提升漏洞Important
NuGetCVE-2019-0976NuGet Package Manager Tampering VulnerabilityImportant
Servicing Stack UpdatesADV990001Latest Servicing Stack UpdatesCritical
Skype for AndroidCVE-2019-0932Skype for Android 信息泄露漏洞Important
SQL ServerCVE-2019-0819Microsoft SQL Server Analysis Services 信息泄露漏洞Important
Team Foundation ServerCVE-2019-0971Azure DevOps Server and Team Foundation Server 信息泄露漏洞Important
Team Foundation ServerCVE-2019-0872Azure DevOps Server and Team Foundation Server Cross-site Scripting VulnerabilityImportant
Team Foundation ServerCVE-2019-0979Azure DevOps Server and Team Foundation Server Cross-site Scripting VulnerabilityImportant
Windows DHCP ServerCVE-2019-0725Windows DHCP Server 远程代码执行漏洞Critical
Windows Diagnostic HubCVE-2019-0727Diagnostic Hub Standard Collector, Visual Studio Standard Collector 特权提升漏洞Important
Windows KernelCVE-2019-0881Windows Kernel 特权提升漏洞Important
Windows NDISCVE-2019-0707Windows NDIS 特权提升漏洞Important
Windows RDPCVE-2019-0708Remote Desktop Services 远程代码执行漏洞Critical

 

修复建议

微软官方已经发布更新补丁,请及时进行补丁更新。

附件

微软发布5月补丁修复82个安全问题

 

Spread the word. Share this post!

Meet The Author

Leave Comment