{"id":14298,"date":"2019-09-20T21:07:16","date_gmt":"2019-09-20T13:07:16","guid":{"rendered":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/?p=14298"},"modified":"2024-11-19T11:18:59","modified_gmt":"2024-11-19T03:18:59","slug":"%e3%80%90%e6%bc%8f%e6%b4%9e%e9%a0%90%e8%ad%a6%e3%80%91microsoft-windows%e9%81%a0%e7%ab%af%e6%a1%8c%e9%9d%a2%e6%9c%8d%e5%8b%99%e5%ad%98%e5%9c%a8%e5%ae%89%e5%85%a8%e6%bc%8f%e6%b4%9ecve-2019-1181","status":"publish","type":"post","link":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/archives\/14298","title":{"rendered":"\u3010\u6f0f\u6d1e\u9810\u8b66\u3011Microsoft Windows\u9060\u7aef\u684c\u9762\u670d\u52d9\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e(CVE-2019-1181\u3001CVE-2019-1182\u3001CVE-2019-1222\u53caCVE-2019-1226)\uff0c\u5141\u8a31\u653b\u64ca\u8005\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc"},"content":{"rendered":"

\u6559\u80b2\u6a5f\u69cbANA\u901a\u5831\u5e73\u53f0<\/h3>\n\n\n\n\n\n\n\n\n\n\n
\u767c\u4f48\u7de8\u865f<\/td>\nTACERT-ANA-2019092008094646<\/td>\n\u767c\u4f48\u6642\u9593<\/td>\n2019-09-20 08:40:48<\/td>\n<\/tr>\n
\u4e8b\u6545\u985e\u578b<\/td>\nANA-\u6f0f\u6d1e\u9810\u8b66<\/td>\n\u767c\u73fe\u6642\u9593<\/td>\n2019-09-19 09:57:15<\/td>\n<\/tr>\n
\u5f71\u97ff\u7b49\u7d1a<\/td>\n\u4f4e<\/td>\n<\/td>\n<\/td>\n<\/tr>\n
[\u4e3b\u65e8\u8aaa\u660e:]<\/strong><\/p>\n

\u3010\u6f0f\u6d1e\u9810\u8b66\u3011Microsoft Windows\u9060\u7aef\u684c\u9762\u670d\u52d9\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e(CVE-2019-1181\u3001CVE-2019-1182\u3001CVE-2019-1222\u53caCVE-2019-1226)\uff0c\u5141\u8a31\u653b\u64ca\u8005\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0c\u8acb\u5118\u901f\u78ba\u8a8d\u4e26\u9032\u884c\u66f4\u65b0\u3002<\/td>\n<\/tr>\n

[\u5167\u5bb9\u8aaa\u660e:]<\/strong><\/p>\n

\u8f49\u767c\u570b\u5bb6\u8cc7\u5b89\u8cc7\u8a0a\u5206\u4eab\u8207\u5206\u6790\u4e2d\u5fc3 \u8cc7\u5b89\u8a0a\u606f\u8b66\u8a0a NISAC-ANA-201909-0110<\/p>\n

Microsoft Windows\u9060\u7aef\u684c\u9762\u670d\u52d9(Remote Desktop Services)\uff0c\u4ea6\u5373\u5728Windows Server 2008\u53ca\u66f4\u65e9\u7248\u672c\u4e2d\u6240\u7a31\u4e4b\u7d42\u7aef\u670d\u52d9(Terminal Services)\uff0c\u8a72\u670d\u52d9\u5141\u8a31\u4f7f\u7528\u8005\u900f\u904e\u7db2\u8def\u9023\u7dda\u4f86\u9060\u7aef\u64cd\u4f5c\u96fb\u8166\u6216\u865b\u64ec\u6a5f\u3002<\/p>\n

\u7814\u7a76\u4eba\u54e1\u767c\u73fe\u9060\u7aef\u684c\u9762\u670d\u52d9\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e(CVE-2019-1181\u3001CVE-2019-1182\u3001CVE-2019-1222\u53caCVE-2019-1226)\uff0c\u53ef\u8b93\u672a\u7d93\u8eab\u5206\u9a57\u8b49\u7684\u9060\u7aef\u653b\u64ca\u8005\uff0c\u900f\u904e\u5c0d\u76ee\u6a19\u7cfb\u7d71\u7684\u9060\u7aef\u684c\u9762\u670d\u52d9\u767c\u9001\u7279\u88fd\u8acb\u6c42\uff0c\u5728\u4e0d\u9700\u4f7f\u7528\u8005\u9032\u884c\u4efb\u4f55\u64cd\u4f5c\u4e92\u52d5\u4e4b\u60c5\u6cc1\u4e0b\uff0c\u9054\u5230\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u4e4b\u5371\u5bb3\u3002<\/p>\n

\u6b64\u8a0a\u606f\u50c5\u767c\u9001\u5230\u300c\u5340\u7e23\u5e02\u7db2\u8def\u4e2d\u5fc3\u300d\uff0c\u7169\u8acb\u8cb4\u55ae\u4f4d\u5354\u52a9\u516c\u544a\u6216\u8f49\u767c<\/td>\n<\/tr>\n

[\u5f71\u97ff\u5e73\u53f0:]<\/strong><\/p>\n

Windows 7<\/p>\n

Windows 8.1<\/p>\n

Windows 10<\/p>\n

Windows Server 2008 R2<\/p>\n

Windows Server 2012<\/p>\n

Windows Server 2012 R2<\/p>\n

Windows Server 2016<\/p>\n

Windows Server 2019<\/td>\n<\/tr>\n

[\u5efa\u8b70\u63aa\u65bd:]<\/strong><\/p>\n

Microsoft\u5b98\u65b9\u5df2\u91dd\u5c0d\u6b64\u5f31\u9ede\u91cb\u51fa\u4fee\u88dc\u7a0b\u5f0f\uff0c\u4e26\u5305\u542b\u65bc8\u6708\u4efd\u4f8b\u884c\u6027\u7d2f\u7a4d\u66f4\u65b0\u4e2d\uff0c\u5404\u6a5f\u95dc\u53ef\u806f\u7d61\u8a2d\u5099\u7dad\u8b77\u5ee0\u5546\u6216\u53c3\u8003\u5404CVE\u5c0d\u61c9\u7684\u5b89\u5168\u6027\u516c\u544a\uff0c\u9032\u884cWindows\u66f4\u65b0<\/td>\n<\/tr>\n

[\u53c3\u8003\u8cc7\u6599:]<\/strong><\/p>\n
    \n
  1. https:\/\/thehackernews.com\/2019\/08\/windows-rdp-wormable-flaws.html<\/li>\n
  2. https:\/\/www.ithome.com.tw\/news\/132413<\/a><\/li>\n
  3. https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance\/releasenotedetail\/312890cc-3673-e911-a991-000d3a33a34d<\/a><\/li>\n
  4. https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1222<\/a><\/li>\n
  5. https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1226<\/a><\/li>\n
  6. https:\/\/www.nccst.nat.gov.tw\/VulnerabilityNewsDetail?lang=zh&seq=1441<\/li>\n<\/ol>\n<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

    (\u6b64\u901a\u5831\u50c5\u5728\u65bc\u544a\u77e5\u76f8\u95dc\u8cc7\u8a0a\uff0c\u4e26\u975e\u70ba\u8cc7\u5b89\u4e8b\u4ef6)\uff0c\u5982\u679c\u60a8\u5c0d\u6b64\u901a\u5831\u7684\u5167\u5bb9\u6709\u7591\u554f\u6216\u6709\u95dc\u65bc\u6b64\u4e8b\u4ef6\u7684\u5efa\u8b70\uff0c\u6b61\u8fce\u8207\u6211\u5011\u9023\u7d61\u3002<\/p>\n

    \u6559\u80b2\u6a5f\u69cb\u8cc7\u5b89\u901a\u5831\u61c9\u8b8a\u5c0f\u7d44
    \n\u7db2\u5740\uff1a    https:\/\/info.cert.tanet.edu.tw\/<\/a>
    \n\u5c08\u7dda\u96fb\u8a71\uff1a07-5250211
    \n\u7db2\u8def\u96fb\u8a71\uff1a98400000
    \nE-Mail\uff1aservice@cert.tanet.edu.tw<\/p>\n","protected":false},"excerpt":{"rendered":"

    \u6559\u80b2\u6a5f\u69cbANA\u901a\u5831\u5e73\u53f0 \u767c\u4f48\u7de8\u865f TACERT-ANA-2019092008094646 \u767c\u4f48\u6642\u9593 2019-09-20 08:40:48 \u4e8b\u6545\u985e\u578b ANA-\u6f0f\u6d1e\u9810\u8b66 \u767c\u73fe\u6642\u9593 2019-09-19 09:57:15 \u5f71\u97ff\u7b49\u7d1a \u4f4e [\u4e3b\u65e8\u8aaa\u660e:]<\/p>\n

    \u3010\u6f0f\u6d1e\u9810\u8b66\u3011Microsoft Windows\u9060\u7aef\u684c\u9762\u670d\u52d9\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e(CVE-2019-1181\u3001CVE-2019-1182\u3001CVE-2019-1222\u53caCVE-2019-1226)\uff0c\u5141\u8a31\u653b\u64ca\u8005\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\uff0c\u8acb\u5118\u901f\u78ba\u8a8d\u4e26\u9032\u884c\u66f4\u65b0\u3002 [\u5167\u5bb9\u8aaa\u660e:]<\/p>\n

    \u8f49\u767c\u570b\u5bb6\u8cc7\u5b89\u8cc7\u8a0a\u5206\u4eab\u8207\u5206\u6790\u4e2d\u5fc3 \u8cc7\u5b89\u8a0a\u606f\u8b66\u8a0a NISAC-ANA-201909-0110<\/p>\n

    Microsoft Windows\u9060\u7aef\u684c\u9762\u670d\u52d9(Remote Desktop Services)\uff0c\u4ea6\u5373\u5728Windows Server 2008\u53ca\u66f4\u65e9\u7248\u672c\u4e2d\u6240\u7a31\u4e4b\u7d42\u7aef\u670d\u52d9(Terminal Services)\uff0c\u8a72\u670d\u52d9\u5141\u8a31\u4f7f\u7528\u8005\u900f\u904e\u7db2\u8def\u9023\u7dda\u4f86\u9060\u7aef\u64cd\u4f5c\u96fb\u8166\u6216\u865b\u64ec\u6a5f\u3002<\/p>\n

    \u7814\u7a76\u4eba\u54e1\u767c\u73fe\u9060\u7aef\u684c\u9762\u670d\u52d9\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e(CVE-2019-1181\u3001CVE-2019-1182\u3001CVE-2019-1222\u53caCVE-2019-1226)\uff0c\u53ef\u8b93\u672a\u7d93\u8eab\u5206\u9a57\u8b49\u7684\u9060\u7aef\u653b\u64ca\u8005\uff0c\u900f\u904e\u5c0d\u76ee\u6a19\u7cfb\u7d71\u7684\u9060\u7aef\u684c\u9762\u670d\u52d9\u767c\u9001\u7279\u88fd\u8acb\u6c42\uff0c\u5728\u4e0d\u9700\u4f7f\u7528\u8005\u9032\u884c\u4efb\u4f55\u64cd\u4f5c\u4e92\u52d5\u4e4b\u60c5\u6cc1\u4e0b\uff0c\u9054\u5230\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u4e4b\u5371\u5bb3\u3002<\/p>\n

    \u6b64\u8a0a\u606f\u50c5\u767c\u9001\u5230\u300c\u5340\u7e23\u5e02\u7db2\u8def\u4e2d\u5fc3\u300d\uff0c\u7169\u8acb\u8cb4\u55ae\u4f4d\u5354\u52a9\u516c\u544a\u6216\u8f49\u767c [\u5f71\u97ff\u5e73\u53f0:]<\/p>\n

    Windows 7<\/p>\n

    Windows 8.1<\/p>\n

    Windows 10<\/p>\n

    Windows Server 2008 R2<\/p>\n

    Windows Server 2012<\/p>\n

    Windows Server 2012 R2<\/p>\n

    Windows Server 2016<\/p>\n

    Windows Server 2019 [\u5efa\u8b70\u63aa\u65bd:]<\/p>\n

    Microsoft\u5b98\u65b9\u5df2\u91dd\u5c0d\u6b64\u5f31\u9ede\u91cb\u51fa\u4fee\u88dc\u7a0b\u5f0f\uff0c\u4e26\u5305\u542b\u65bc8\u6708\u4efd\u4f8b\u884c\u6027\u7d2f\u7a4d\u66f4\u65b0\u4e2d\uff0c\u5404\u6a5f\u95dc\u53ef\u806f\u7d61\u8a2d\u5099\u7dad\u8b77\u5ee0\u5546\u6216\u53c3\u8003\u5404CVE\u5c0d\u61c9\u7684\u5b89\u5168\u6027\u516c\u544a\uff0c\u9032\u884cWindows\u66f4\u65b0 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[6],"tags":[],"_links":{"self":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/14298"}],"collection":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/comments?post=14298"}],"version-history":[{"count":0,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/14298\/revisions"}],"wp:attachment":[{"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/media?parent=14298"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/categories?post=14298"},{"taxonomy":"post_tag","embeddable":true,"href":"http:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/tags?post=14298"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}