阿里云
阿里云多端小程序中小企业获客首选
发表主题 回复主题
  • 8362阅读
  • 4回复

[安全漏洞公告专区]【漏洞公告】微软“周二补丁日”—2018年07月

级别: 论坛版主
发帖
241
云币
478
微软今天针对已在各种产品中发现并解决的漏洞发布了每月一套的安全建议。 本月的发布解决了53个新的漏洞,其中17个被评为严重漏洞,34个被评为重要漏洞,一个被评为中等,一个被评为低严重性。 这些漏洞会影响Windows操作系统,Edge,Internet Explorer等。 =}bDT2Nb  
W%3<"'eP  
pzkl;"gK  
除了上面提到的53个漏洞之外,Microsoft还发布了一个关键更新公告ADV180017 ,它解决了Adobe安全公告APSB18-24 中描述的漏洞。 ,BUDo9h  

\ O*8%  
C\ ~!2cy  
NJ^H"FLS:  
G5C=p:o{/  
Critical vulnerabilities )<fa1Gz#^  
 j|Q*L<J  
This month, Microsoft is addressing 17 vulnerabilities that are rated as critical: Gxtqzr*  
  • CVE-2018-8242 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8262 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2018-8274 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2018-8275 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8279 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8280 - Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8283 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8286 - Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8288 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8290 - Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8291 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8294 - Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8296 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8298 - Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8301 - Microsoft Edge Memory Corruption Vulnerability
  • CVE-2018-8324 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2018-8327 - PowerShell Editor Services Remote Code Execution Vulnerability
+#|| w9p  
/| nZ)?  
Important vulnerabilities aan)yP  
.ZV-]jgr  
This month, Microsoft is addressing 34 vulnerabilities that are rated as important. /-in:gX8  
  • CVE-2018-0949 - Internet Explorer Security Feature Bypass Vulnerability
  • CVE-2018-8125 - Chakra Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8171 - ASP.NET Core Security Feature Bypass Vulnerability
  • CVE-2018-8172 - Visual Studio Remote Code Execution Vulnerability
  • CVE-2018-8202 - .NET Framework Elevation of Privilege Vulnerability
  • CVE-2018-8206 - Windows FTP Server Denial of Service Vulnerability
  • CVE-2018-8222 - Device Guard Code Integrity Policy Security Feature Bypass Vulnerability
  • CVE-2018-8238 - Skype for Business and Lync Security Feature Bypass Vulnerability
  • CVE-2018-8260 - .NET Framework Remote Code Execution Vulnerability
  • CVE-2018-8276 - Scripting Engine Security Feature Bypass Vulnerability
  • CVE-2018-8278 - Microsoft Edge Spoofing Vulnerability
  • CVE-2018-8281 - Microsoft Office Remote Code Execution Vulnerability
  • CVE-2018-8282 - Win32k Elevation of Privilege Vulnerability
  • CVE-2018-8284 - .NET Framework Remote Code Injection Vulnerability
  • CVE-2018-8287 - Scripting Engine Memory Corruption Vulnerability
  • CVE-2018-8289 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2018-8297 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2018-8299 - Microsoft SharePoint Elevation of Privilege Vulnerability
  • CVE-2018-8300 - Microsoft SharePoint Remote Code Execution Vulnerability
  • CVE-2018-8304 - Windows DNSAPI Denial of Service Vulnerability
  • CVE-2018-8305 - Windows Mail Client Information Disclosure Vulnerability
  • CVE-2018-8306 - Microsoft Wireless Display Adapter Command Injection Vulnerability
  • CVE-2018-8307 - WordPad Security Feature Bypass Vulnerability
  • CVE-2018-8308 - Windows Kernel Elevation of Privilege Vulnerability
  • CVE-2018-8309 - Windows Denial of Service Vulnerability
  • CVE-2018-8311 - Remote Code Execution Vulnerability in Skype For Business and Lync
  • CVE-2018-8312 - Microsoft Access Remote Code Execution Use After Free Vulnerability
  • CVE-2018-8313 - Windows Elevation of Privilege Vulnerability
  • CVE-2018-8314 - Windows Elevation of Privilege Vulnerability
  • CVE-2018-8319 - MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability
  • CVE-2018-8323 - Microsoft SharePoint Elevation of Privilege Vulnerability
  • CVE-2018-8325 - Microsoft Edge Information Disclosure Vulnerability
  • CVE-2018-8326 - Open Source Customization for Active Directory Federation Services XSS Vulnerability
  • CVE-2018-8356 - .NET Framework Security Feature Bypass Vulnerability
b7thu5  
D*!UB5<>/t  
*,hg+?lZ  
情报来源:https://blog.talosintelligence.com/2018/07/ms-tuesday.html }bU1wIW9I  
[ 此帖被正禾在2018-07-24 09:17重新编辑 ]
本帖最近评分记录: 1 条评分 云币 +1
helen123565 云币 +1 - 2018-12-24
级别: 禁止发言
发帖
15
云币
19
只看该作者 沙发  发表于: 2018-08-06
用户被禁言,该主题自动屏蔽!
级别: 新人
发帖
2
云币
3
只看该作者 板凳  发表于: 2018-08-13
Re【漏洞公告】微软“周二补丁日”—2018年07月
谢谢整理的这些信息
级别: 新人
发帖
9
云币
9
只看该作者 地板  发表于: 2018-11-05
Re【漏洞公告】微软“周二补丁日”—2018年07月
谢谢
级别: 论坛版主
发帖
7
云币
3
只看该作者 4楼 发表于: 01-09
L=1~)>mP  
发表主题 回复主题
« 返回列表上一主题下一主题

限100 字节
如果您在写长篇帖子又不马上发表,建议存为草稿
 
验证问题: 66 + 11 = ?
上一个 下一个
      ×
      全新阿里云开发者社区, 去探索开发者的新世界吧!
      一站式的体验,更多的精彩!
      通过下面领域大门,一起探索新的技术世界吧~ (点击图标进入)