真人一级毛片免费_中文字幕乱码人妻一区二区在线_久久国产AV尤物尤物尤物_av无码理论片在线观看免费网站

0757-86231086

新聞詳情

Windows MSDT 遠程執(zhí)行代碼漏洞 CVE-2022-30190
發(fā)布時間:2022-06-02

組件介紹

MSDT是微軟支持診斷工具(Microsoft Windows Support Diagnositc Tool)的縮寫,用以幫助診斷用戶可能遇到的問題并記錄相關(guān)信息。

漏洞描述

近日,監(jiān)測到一則Windows MSDT組件存在遠程執(zhí)行代碼的信息,漏洞編號:CVE-2022-30190,漏洞威脅等級:高危。

該漏洞是由于MSDT被用戶應用使用URL協(xié)議調(diào)用,攻擊者通過社會工程誘使受害者從網(wǎng)站下載并打開特制文件,最終獲取用戶權(quán)限。

影響范圍

目前受影響的Windows版本:

Windows Server 2012 R2

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 for 32-bit/x64-based Systems Service Pack 2

Windows RT 8.1

Windows 8.1 for 32-bit/x64-based systems

Windows 7 for 32-bit/x64-based Systems Service Pack 1

Windows Server 2016

Windows 10 Version 1607 for 32-bit/x64-based Systems

Windows 10 for 32-bit/x64-based Systems

Windows 10 Version 21H2 for 32-bit/ARM64-based/x64-based Systems

Windows 11 for x64-based/ARM64-based Systems

Windows 10 Version 20H2 for x64-based/32-bit/ARM64-based Systems

Windows Server 2022 Azure Edition Core Hotpatch

Windows Server 2022

Windows 10 Version 21H1 for x64-based/ARM64-based/32-bit Systems

Windows Server 2019

Windows 10 Version 1809 for 32-bit/x64-based/ARM64-based Systems