教育機構ANA通報平台
發布編號 |
TACERT-ANA-2017071910070000 |
||
發現時間 |
2017-07-13 00:00:00 |
||
發佈時間 |
2017-07-19 10:14:25 |
||
事故類型 |
ANA-漏洞預警 |
||
影響等級 |
中 |
||
主旨說明 |
【漏洞預警】微軟Windows作業系統的NTLM驗證通訊協定存在允許攻擊者透過重送攻擊進而取得整個網域控制權之漏洞(CVE-2017-8563),請儘速進行更新 |
||
內容說明 |
[內容說明]:
|
||
影響平台 |
Windows 7 for 32-bit Systems Service Pack 1 Windows 7 for x64-based Systems Service Pack 1 Windows 8.1 for 32-bit systems Windows 8.1 for x64-based systems Windows RT 8.1 Windows 10 for 32-bit Systems Windows 10 for x64-based Systems Windows 10 Version 1511 for 32-bit Systems Windows 10 Version 1511 for x64-based Systems Windows 10 Version 1607 for 32-bit Systems Windows 10 Version 1607 for x64-based Systems Windows 10 Version 1703 for 32-bit Systems Windows 10 Version 1703 for x64-based Systems Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core安裝選項) Windows Server 2008 for Itanium-Based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core安裝選項) Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core安裝選項) Windows Server 2012 Windows Server 2012 (Server Core安裝選項) Windows Server 2012 R2 Windows Server 2012 R2 (Server Core安裝選項) Windows Server 2016 Windows Server 2016 (Server Core安裝選項) |
||
建議措施 |
目前微軟官方已針對此弱點釋出修復程式 (https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2017-8563),請儘速進行更新。
|
||
參考資料 |
|
||
備註 |
公告出處:
教育機構資安通報應變小組 網址:https://info.cert.tanet.edu.tw/ 專線電話:07-5250211 網路電話:98400000 E-Mail:service@cert.tanet.edu.tw |