下载 | 微软Windows安全更新补丁7月 Microsoft Office远程执行代码漏洞CVE-2018-8281

7月安全更新补丁,修复了54个从简单的欺骗攻击到远程执行代码的安全问题,产品涉及.NET Framework、Active Directory、Adobe Flash Player、ASP.NET、Device Guard、Internet Explorer、Microsoft Devices、Microsoft Edge、Microsoft Office、Microsoft PowerShell、Microsoft Scripting Engine、Microsoft Windows、Microsoft Windows DNS、Microsoft WordPad、Skype for Business and Microsoft Lync、Visual Studio、Windows Kernel以及Windows Shell。

以下6个漏洞威胁程度较高,需重点关注:

.NET Framework

CVE-2018-8260

.NET Framework 远程代码执行漏洞

Microsoft Office

CVE-2018-8281

Microsoft Office 远程代码执行漏洞

Microsoft Office

CVE-2018-8300

Microsoft SharePoint 远程代码执行漏洞

Microsoft PowerShell

CVE-2018-8327

PowerShell Editor Services 远程代码执行漏洞

Skype for Business and Microsoft Lync

CVE-2018-8311

远程代码执行漏洞 in Skype For Business and Lync

Visual Studio

CVE-2018-8172

Visual Studio 远程代码执行漏洞

以下为所有漏洞更新:

产品

CVE 编号

CVE 标题

.NET Framework

CVE-2018-8202

.NET Framework 特权提升漏洞

.NET Framework

CVE-2018-8356

.NET Framework 安全功能绕过漏洞

.NET Framework

CVE-2018-8284

.NET Framework 远程代码注入漏洞

Active Directory

CVE-2018-8326

Open Source Customization for Active Directory Federation Services XSS Vulnerability

Adobe Flash Player

ADV180017

July 2018 Adobe Flash 安全更新

ASP.NET

CVE-2018-8171

ASP.NET 安全功能绕过漏洞

Device Guard

CVE-2018-8222

Device Guard Code Integrity Policy 安全功能绕过漏洞

Internet Explorer

CVE-2018-0949

Internet Explorer 安全功能绕过漏洞

Microsoft Devices

CVE-2018-8306

Microsoft Wireless Display Adapter 命令注入漏洞

Microsoft Edge

CVE-2018-8262

Microsoft Edge 内存破坏漏洞

Microsoft Edge

CVE-2018-8274

Microsoft Edge 内存破坏漏洞

Microsoft Edge

CVE-2018-8278

Microsoft Edge 欺骗漏洞

Microsoft Edge

CVE-2018-8289

Microsoft Edge 信息泄露漏洞

Microsoft Edge

CVE-2018-8297

Microsoft Edge 信息泄露漏洞

Microsoft Edge

CVE-2018-8301

Microsoft Edge 内存破坏漏洞

Microsoft Edge

CVE-2018-8324

Microsoft Edge 信息泄露漏洞

Microsoft Edge

CVE-2018-8325

Microsoft Edge 信息泄露漏洞

 

 

 

Microsoft Office

CVE-2018-8323

Microsoft SharePoint 特权提升漏洞

Microsoft Office

CVE-2018-8299

Microsoft SharePoint 特权提升漏洞

 

 

 

Microsoft Office

CVE-2018-8310

Microsoft Office Tampering Vulnerability

Microsoft Office

CVE-2018-8312

Microsoft Access 远程代码执行漏洞

Microsoft PowerShell

CVE-2018-8327

PowerShell Editor Services 远程代码执行漏洞

Microsoft Scripting Engine

CVE-2018-8242

Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8275

Microsoft Edge 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8276

Scripting Engine 安全功能绕过漏洞

Microsoft Scripting Engine

CVE-2018-8279

Microsoft Edge 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8280

Chakra Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8283

Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8286

Chakra Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8287

Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8288

Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8290

Chakra Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8291

Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8294

Chakra Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8296

Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8298

Scripting Engine 内存破坏漏洞

Microsoft Scripting Engine

CVE-2018-8125

Microsoft Edge 内存破坏漏洞

Microsoft Windows

CVE-2018-8206

Windows FTP Server 拒绝服务漏洞

Microsoft Windows

CVE-2018-8313

Windows 特权提升漏洞

Microsoft Windows

CVE-2018-8319

MSR JavaScript Cryptography Library 安全功能绕过漏洞

Microsoft Windows

CVE-2018-8305

Windows Mail Client 信息泄露漏洞

Microsoft Windows

CVE-2018-8308

Windows Kernel 特权提升漏洞

Microsoft Windows

CVE-2018-8309

Windows 拒绝服务漏洞

Microsoft Windows DNS

CVE-2018-8304

Windows DNSAPI 拒绝服务漏洞

Microsoft WordPad

CVE-2018-8307

WordPad 安全功能绕过漏洞

Skype for Business and Microsoft Lync

CVE-2018-8238

Skype for Business and Lync 安全功能绕过漏洞

Skype for Business and Microsoft Lync

CVE-2018-8311

远程代码执行漏洞 in Skype For Business and Lync

Visual Studio

CVE-2018-8172

Visual Studio 远程代码执行漏洞

Visual Studio

CVE-2018-8232

Microsoft Macro Assembler Tampering Vulnerability

Windows Kernel

CVE-2018-8282

Win32k 特权提升漏洞

Windows Shell

CVE-2018-8314

Windows 特权提升漏洞

修复建议

微软官方已经发布更新,请及时进行补丁更新

漏洞详情 附件下载

发表评论