Microsoft | 11Ô¶à¸ö²úÆ·Îó²îͨ¸æ

Ðû²¼Ê±¼ä 2020-11-11

0x00 Îó²î¸ÅÊö

2020Äê11ÔÂ10ÈÕÐÇÆÚ¶þ £¬£¬£¬MicrosoftÐû²¼ÁË11Ô·ݵÄÇå¾²¸üР£¬£¬£¬±¾´ÎÐû²¼µÄÇå¾²²¹¶¡¹²¼Æ112¸ö £¬£¬£¬ÆäÖÐÓÐ17¸öÎó²îÆÀ¼¶ÎªÑÏÖØ £¬£¬£¬93¸öÎó²îÆÀ¼¶Îª¸ßΣ £¬£¬£¬2¸öÎó²îÆÀ¼¶ÎªµÍΣ ¡£¡£¡£¡£ÔÚ´Ë´ÎÐû²¼µÄ17¸öÒªº¦²¹¶¡ÖÐ £¬£¬£¬ÆäÖÐÓÐ12¸öÎó²îΪԶ³Ì´úÂëÖ´ÐÐÎó²î ¡£¡£¡£¡£

 

0x01 Îó²îÏêÇé

 

image.png

´Ó11ÔµÄÇ徲ͨ¸æ×îÏÈ £¬£¬£¬Microsoftɾ³ýÁËCVE¸ÅÊöµÄÐÎò²¿·Ö ¡£¡£¡£¡£Î¢ÈíÔÚÖÜÒ»Ðû²¼ £¬£¬£¬Ëü½«Ê¹ÓÃÐÐÒµ±ê×¼ £¬£¬£¬¼´Í¨ÓÃÎó²îÆÀ·Öϵͳ£¨CVSS£©À´ÎªPatch Tuesday£¨Î¢ÈíÖܶþ²¹¶¡ÈÕ£©µÄÇ徲ͨ¸æÌṩÎó²îÐÅÏ¢ ¡£¡£¡£¡£

΢Èí±¾´ÎÐû²¼µÄÇå¾²¸üÐÂÖÐ £¬£¬£¬ÊÜÓ°ÏìµÄ²úÆ·ºÍ×é¼þ°üÀ¨£ºMicrosoft Windows¡¢Office¡¢Internet Explorer¡¢Edge (EdgeHTML and Chromium)¡¢ ChakraCore¡¢ Exchange Server¡¢Dynamics¡¢Windows Codecs Library¡¢ Azure Sphere¡¢ Windows Defender¡¢Teams¡¢Azure SDK¡¢Azure DevOpsºÍVisual Studio ¡£¡£¡£¡£ÏêÇéÈçÏ£º

 

²úÆ·

CVE   ID

Îó²îÃû³Æ

ÑÏÖØˮƽ

Azure   DevOps

CVE-2020-1325

Azure DevOpsЧÀÍÆ÷ºÍTeam Foundation ServicesÓÕÆ­Îó²î

¸ßΣ

Azure   Sphere

CVE-2020-16985

Azure SphereÐÅϢй¶Îó²î

¸ßΣ

Azure   Sphere

CVE-2020-16986

Azure Sphere¾Ü¾øЧÀÍÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16987

Azure SphereδÊðÃû´úÂëÖ´ÐÐÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16984

Azure SphereδÊðÃû´úÂëÖ´ÐÐÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16981

Azure SphereȨÏÞÌáÉýÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16982

Azure SphereδÊðÃû´úÂëÖ´ÐÐÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16983

Azure Sphere¸Ä¶¯Îó²î

¸ßΣ

Azure   Sphere

CVE-2020-16988

Azure SphereȨÏÞÌáÉýÎó²î

ÑÏÖØ

Azure   Sphere

CVE-2020-16993

Azure SphereȨÏÞÌáÉýÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16994

Azure SphereδÊðÃû´úÂëÖ´ÐÐÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16970

Azure SphereδÊðÃû´úÂëÖ´ÐÐÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16992

Azure SphereȨÏÞÌáÉýÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16989

Azure SphereȨÏÞÌáÉýÎó²î

¸ßΣ

Azure   Sphere

CVE-2020-16990

Azure SphereÐÅϢй¶Îó²î

¸ßΣ

Azure   Sphere

CVE-2020-16991

Azure SphereδÊðÃû´úÂëÖ´ÐÐÎó²î

¸ßΣ

Common   Log File System Driver

CVE-2020-17088

WindowsͨÓÃÈÕÖ¾ÎļþϵͳÇý¶¯³ÌÐòȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Browsers

CVE-2020-17058

Microsoftä¯ÀÀÆ÷ÄÚ´æËð»µÎó²î

ÑÏÖØ

Microsoft   Dynamics

CVE-2020-17005

Microsoft   Dynamics 365£¨ÍâµØ£©¿çÕ¾µã¾ç±¾Îó²î

¸ßΣ

Microsoft   Dynamics

CVE-2020-17018

Microsoft   Dynamics 365£¨ÍâµØ£©¿çÕ¾µã¾ç±¾Îó²î

¸ßΣ

Microsoft   Dynamics

CVE-2020-17021

Microsoft   Dynamics 365£¨ÍâµØ£©¿çÕ¾µã¾ç±¾Îó²î

¸ßΣ

Microsoft   Dynamics

CVE-2020-17006

Microsoft   Dynamics 365£¨ÍâµØ£©¿çÕ¾µã¾ç±¾Îó²î

¸ßΣ

Microsoft   Exchange Server

CVE-2020-17083

Microsoft   Exchange ServerÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Exchange Server

CVE-2020-17085

Microsoft   Exchange Server¾Ü¾øЧÀÍÎó²î

¸ßΣ

Microsoft   Exchange Server

CVE-2020-17084

Microsoft   Exchange ServerÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Graphics Component

CVE-2020-16998

DirectXȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Graphics Component

CVE-2020-17029

Windows   CanonicalÏÔʾÇý¶¯³ÌÐòÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Graphics Component

CVE-2020-17004

WindowsͼÐÎ×é¼þÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Graphics Component

CVE-2020-17038

Win32kȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Graphics Component

CVE-2020-17068

Windows GDI +Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Office

CVE-2020-17065

Microsoft   ExcelÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Office

CVE-2020-17064

Microsoft   ExcelÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Office

CVE-2020-17066

Microsoft   ExcelÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Office

CVE-2020-17019

Microsoft   ExcelÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Office

CVE-2020-17067

Microsoft   ExcelÇå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

Microsoft   Office

CVE-2020-17062

Microsoft   Office AccessÅþÁ¬ÒýÇæÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Office

CVE-2020-17063

Microsoft   Office OnlineÓÕÆ­Îó²î

¸ßΣ

Microsoft   Office

CVE-2020-17020

Microsoft WordÇå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

Microsoft   Office SharePoint

CVE-2020-17016

Microsoft   SharePointÓÕÆ­Îó²î

¸ßΣ

Microsoft   Office SharePoint

CVE-2020-16979

Microsoft   SharePointÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Office SharePoint

CVE-2020-17015

Microsoft   SharePointÓÕÆ­Îó²î

µÍΣ

Microsoft   Office SharePoint

CVE-2020-17017

Microsoft SharePointÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Office SharePoint

CVE-2020-17061

Microsoft   SharePointÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Office SharePoint

CVE-2020-17060

Microsoft   SharePointÓÕÆ­Îó²î

¸ßΣ

Microsoft   Scripting Engine

CVE-2020-17048

Chakra¾ç±¾ÒýÇæÄÚ´æËð»µÎó²î

ÑÏÖØ

Microsoft   Scripting Engine

CVE-2020-17053

Internet   ExplorerÄÚ´æËð»µÎó²î

ÑÏÖØ

Microsoft   Scripting Engine

CVE-2020-17052

¾ç±¾ÒýÇæÄÚ´æËð»µÎó²î

ÑÏÖØ

Microsoft   Scripting Engine

CVE-2020-17054

Chakra¾ç±¾ÒýÇæÄÚ´æËð»µÎó²î

¸ßΣ

Microsoft   Teams

CVE-2020-17091

Microsoft   TeamsÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17032

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17033

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17026

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17031

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17027

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17030

Windows MSCTF   ServerÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17028

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17044

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17045

Windows   KernelStreamÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17046

Windows¹ýʧ±¨¸æ¾Ü¾øЧÀÍÎó²î

µÍΣ

Microsoft   Windows

CVE-2020-17043

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17042

Windows Print   SpoolerÔ¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows

CVE-2020-17041

Windows´òÓ¡ÉèÖÃȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17034

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17049

KerberosÇå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17051

WindowsÍøÂçÎļþϵͳԶ³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows

CVE-2020-17040

Windows   Hyper-VÇå¾²¹¦Ð§ÈƹýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17047

WindowsÍøÂçÎļþϵͳ¾Ü¾øЧÀÍÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17036

Windows¹¦Ð§·¢Ã÷SSDPÌṩ³ÌÐòÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17000

Ô¶³Ì×ÀÃæЭÒé¿Í»§¶ËÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-1599

WindowsÓÕÆ­Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-16997

Ô¶³Ì×ÀÃæЭÒéЧÀÍÆ÷ÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17001

Windows Print   SpoolerȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17057

Windows Win32kȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17056

WindowsÍøÂçÎļþϵͳÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17055

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17010

Win32kȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17007

Windows¹ýʧ±¨¸æȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17014

Windows Print   SpoolerȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17025

WindowsÔ¶³Ì»á¼ûȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17024

Windows¿Í»§¶ËäÖȾ´òÓ¡Ìṩ³ÌÐòȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17013

Win32kÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17011

Windows¶Ë¿ÚÀà¿âȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows

CVE-2020-17012

Windows°ó¶¨É¸Ñ¡Æ÷Çý¶¯³ÌÐòȨÏÞÌáÉýÎó²î

¸ßΣ

Microsoft   Windows Codecs Library

CVE-2020-17106

HEVCÊÓƵÀ©Õ¹Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17101

HEIF Image   ExtensionsÔ¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17105

AV1ÊÓƵÀ©Õ¹Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17102

WebPͼÏñÀ©Õ¹ÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows Codecs Library

CVE-2020-17082

Raw Image   ExtensionÔ¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17086

Raw Image   ExtensionÔ¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Microsoft   Windows Codecs Library

CVE-2020-17081

Microsoft Raw   Image ExtensionÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows Codecs Library

CVE-2020-17079

Raw Image   ExtensionÔ¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17078

Raw Image   ExtensionÔ¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17107

HEVCÊÓƵÀ©Õ¹Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17110

HEVCÊÓƵÀ©Õ¹Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17113

Windows Camera±à½âÂëÆ÷ÐÅϢй¶Îó²î

¸ßΣ

Microsoft   Windows Codecs Library

CVE-2020-17108

HEVCÊÓƵÀ©Õ¹Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Microsoft   Windows Codecs Library

CVE-2020-17109

HEVCÊÓƵÀ©Õ¹Ô¶³Ì´úÂëÖ´ÐÐÎó²î

ÑÏÖØ

Visual   Studio

CVE-2020-17104

Visual Studio   Code JSHintÀ©Õ¹Ô¶³Ì´úÂëÖ´ÐÐÎó²î

¸ßΣ

Visual   Studio

CVE-2020-17100

Visual Studio¸Ä¶¯Îó²î

¸ßΣ

Windows   Defender

CVE-2020-17090

Microsoft   Defender for Endpoint Security¹¦Ð§ÈƹýÎó²î

¸ßΣ

Windows   Kernel

CVE-2020-17035

WindowsÄÚºËȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   Kernel

CVE-2020-17087

WindowsÄÚºËÍâµØȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   NDIS

CVE-2020-17069

Windows NDISÐÅϢй¶Îó²î

¸ßΣ

Windows   Update Stack

CVE-2020-17074

Windows Update   OrchestratorЧÀÍȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   Update Stack

CVE-2020-17073

Windows Update   OrchestratorЧÀÍȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   Update Stack

CVE-2020-17071

Windows   Delivery OptimizationÐÅϢй¶Îó²î

¸ßΣ

Windows   Update Stack

CVE-2020-17075

Windows USO   Core WorkerȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   Update Stack

CVE-2020-17070

Windows Update   MedicЧÀÍȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   Update Stack

CVE-2020-17077

Windows Update¿ÍջȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   Update Stack

CVE-2020-17076

Windows Update   OrchestratorЧÀÍȨÏÞÌáÉýÎó²î

¸ßΣ

Windows   WalletService

CVE-2020-16999

Windows   WalletServiceÐÅϢй¶Îó²î

¸ßΣ

Windows   WalletService

CVE-2020-17037

Windows   WalletServiceȨÏÞÌáÉýÎó²î

¸ßΣ

  

±¾´ÎÐû²¼µÄÇå¾²¸üÐÂÖÐ £¬£¬£¬²¿·ÖÑÏÖØÎó²îÈçÏ£º

Windows NFSÔ¶³Ì´úÂëÖ´ÐÐÎó²î£¨CVE-2020-17051£©

Windows NFSÊÇÒ»ÖÖÍøÂçÎļþϵͳ £¬£¬£¬Óû§¿ÉÒÔͨ¹ýNFS»á¼ûÍøÂçÉϵÄÎļþ²¢½«ËüÃÇÏñÍâµØÎļþÒ»Ñù²Ù×÷ ¡£¡£¡£¡£¹¥»÷Õß¿ÉÒÔʹÓôËÎó²îÀ´»á¼ûϵͳ £¬£¬£¬²¢Ô¶³ÌÖ´ÐжñÒâ´úÂë ¡£¡£¡£¡£¸ÃÎó²îCVSSÆÀ·Ö9.8 ¡£¡£¡£¡£

Îó²îÏêÇéÈçÏ£º

https://msrc.microsoft.com/update-guide/en-US/vulnerability/CVE-2020-17051

 

Windows cng.sysȨÏÞÌáÉýÎó²î£¨CVE-2020-17087£©

¸ÃÎó²îµÄϸ½ÚÒÑÔÚ֮ǰÅû¶ ¡£¡£¡£¡£

ÏêÇéÈçÏ£º

/new_type/aqtg/20201102/22021.html

 

0x02 ´¦Öóͷ£½¨Òé

ÏÖÔÚMicrosoftÒÑÐû²¼Çå¾²¸üР£¬£¬£¬½¨ÒéʵʱװÖÃÏà¹Ø²¹¶¡ ¡£¡£¡£¡£

£¨Ò»£© Windows update¸üÐÂ

×Ô¶¯¸üУº

Microsoft UpdateĬÈÏÆôÓà £¬£¬£¬µ±ÏµÍ³¼ì²âµ½¿ÉÓøüÐÂʱ £¬£¬£¬½«»á×Ô¶¯ÏÂÔظüв¢ÔÚÏÂÒ»´ÎÆô¶¯Ê±×°Öà ¡£¡£¡£¡£

ÊÖ¶¯¸üУº

1¡¢µã»÷¡°×îÏȲ˵¥¡±»ò°´Windows¿ì½Ý¼ü £¬£¬£¬µã»÷½øÈë¡°ÉèÖá±

2¡¢Ñ¡Ôñ¡°¸üкÍÇå¾²¡± £¬£¬£¬½øÈë¡°Windows¸üС±£¨Windows 8¡¢Windows 8.1¡¢Windows Server 2012ÒÔ¼°Windows Server 2012 R2¿Éͨ¹ý¿ØÖÆÃæ°å½øÈë¡°Windows¸üС± £¬£¬£¬Ïêϸ°ì·¨Îª¡°¿ØÖÆÃæ°å¡±->¡°ÏµÍ³ºÍÇå¾²¡±->¡°Windows¸üС±£©

3¡¢Ñ¡Ôñ¡°¼ì²é¸üС± £¬£¬£¬ÆÚ´ýϵͳ½«×Ô¶¯¼ì²é²¢ÏÂÔØ¿ÉÓøüР¡£¡£¡£¡£

4¡¢ÖØÆôÅÌËã»ú £¬£¬£¬×°ÖøüÐÂϵͳÖØÐÂÆô¶¯ºó £¬£¬£¬¿Éͨ¹ý½øÈë¡°Windows¸üС±->¡°Éó²é¸üÐÂÀúÊ·¼Í¼¡±Éó²éÊÇ·ñÀÖ³É×°ÖÃÁ˸üР¡£¡£¡£¡£¹ØÓÚûÓÐÀÖ³É×°ÖõĸüР£¬£¬£¬¿ÉÒÔµã»÷¸Ã¸üÐÂÃû³Æ½øÈë΢Èí¹Ù·½¸üÐÂÐÎòÁ´½Ó £¬£¬£¬µã»÷×îеÄSSUÃû³Æ²¢ÔÚÐÂÁ´½ÓÖеã»÷¡°Microsoft ¸üÐÂĿ¼¡± £¬£¬£¬È»ºóÔÚÐÂÁ´½ÓÖÐÑ¡ÔñÊÊÓÃÓÚÄ¿µÄϵͳµÄ²¹¶¡¾ÙÐÐÏÂÔز¢×°Öà ¡£¡£¡£¡£

 

£¨¶þ£© ÊÖ¶¯×°ÖøüÐÂ

΢Èí¹Ù·½ÏÂÔØÏìÓ¦²¹¶¡¾ÙÐиüР¡£¡£¡£¡£

ÏÂÔصص㣺

https://msrc.microsoft.com/update-guide/en-us


0x03 ²Î¿¼Á´½Ó

https://msrc.microsoft.com/update-guide/en-us

https://threatpost.com/microsoft-patch-tuesday-critical-bugs/161098/

https://www.theregister.com/2020/11/11/patch_tuesday_updates/

 

0x04 ʱ¼äÏß

2020-11-10  MicrosoftÐû²¼Çå¾²¸üÐÂ

2020-11-11  VSRCÐû²¼Ç徲ͨ¸æ

 

0x05 ¸½Â¼

 

CVSSÆÀ·Ö±ê×¼¹ÙÍø£ºhttp://www.first.org/cvss/

 

image.png