https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-0708<\/a><\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n","protected":false},"excerpt":{"rendered":"\u6559\u80b2\u6a5f\u69cbANA\u901a\u5831\u5e73\u53f0 \u767c\u4f48\u7de8\u865f TACERT-ANA-2020022004024242 \u767c\u4f48\u6642\u9593 2020-02-20 16:25:42 \u4e8b\u6545\u985e\u578b ANA-\u653b\u64ca\u9810\u8b66 \u767c\u73fe\u6642\u9593 2020-02-19 14:18:42 \u5f71\u97ff\u7b49\u7d1a \u4f4e [\u4e3b\u65e8\u8aaa\u660e:]<\/p>\n
\u3010\u653b\u64ca\u9810\u8b66\u3011\u5efa\u8b70\u5404\u55ae\u4f4d\u52ff\u958b\u555f\u9060\u7aef\u684c\u9762\u5354\u5b9a\uff08RDP)\uff0c\u4ee5\u907f\u514d\u7cfb\u7d71\u906d\u5230\u5165\u4fb5 [\u5167\u5bb9\u8aaa\u660e:]<\/p>\n
\u8f49\u767c\u570b\u5bb6\u8cc7\u5b89\u8cc7\u8a0a\u5206\u4eab\u8207\u5206\u6790\u4e2d\u5fc3 \u8cc7\u5b89\u8a0a\u606f\u8b66\u8a0a NISAC-ANA-202002-0558<\/p>\n
\u8fd1\u671f\u5b78\u8853\u7db2\u8def\u5167\u767c\u73fe\u4ecd\u6709\u5927\u91cf\u96fb\u8166\u7591\u4f3c\u958b\u555fMicrosoft Windows\u9060\u7aef\u684c\u9762\u670d\u52d9(Remote Desktop Services\uff0c\u7c21\u7a31RDP)\uff0c\u9810\u8a2d\u57e0\u300c3389\u300d\uff0c\u56e0\u53bb\u5e74\u9060\u7aef\u684c\u9762\u670d\u52d9(RDP)\u5df2\u88ab\u901a\u5831\u5b58\u5728\u4e0b\u8ff0\u5b89\u5168\u6f0f\u6d1e\uff0c\u6545\u5efa\u8b70\u5404\u55ae\u4f4d\u52ff\u958b\u555f\u9060\u7aef\u684c\u9762\u5354\u5b9a\uff08RDP)\uff0c\u4ee5\u907f\u514d\u7cfb\u7d71\u906d\u5230\u5165\u4fb5\u3002<\/p>\n
1\u3001[TACERT-ANA-2019092008094646]\u7814\u7a76\u4eba\u54e1\u767c\u73fe\u9060\u7aef\u684c\u9762\u670d\u52d9\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e(CVE-2019-1181\u3001CVE-2019-1182\u3001CVE-2019-1222\u53caCVE-2019-1226)\uff0c\u53ef\u8b93\u672a\u7d93\u8eab\u5206\u9a57\u8b49\u7684\u9060\u7aef\u653b\u64ca\u8005\uff0c\u900f\u904e\u5c0d\u76ee\u6a19\u7cfb\u7d71\u7684\u9060\u7aef\u684c\u9762\u670d\u52d9\u767c\u9001\u7279\u88fd\u8acb\u6c42\uff0c\u5728\u4e0d\u9700\u4f7f\u7528\u8005\u9032\u884c\u4efb\u4f55\u64cd\u4f5c\u4e92\u52d5\u4e4b\u60c5\u6cc1\u4e0b\uff0c\u9054\u5230\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u4e4b\u5371\u5bb3\u3002<\/p>\n
2\u3001[TACERT-ANA-2019051502053333]\u7814\u7a76\u4eba\u54e1\u767c\u73fe\u9060\u7aef\u684c\u9762\u670d\u52d9\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e(CVE-2019-0708)\uff0c\u9060\u7aef\u653b\u64ca\u8005\u53ef\u5c0d\u76ee\u6a19\u7cfb\u7d71\u4e4b\u9060\u7aef\u684c\u9762\u670d\u52d9\u767c\u9001\u7279\u88fd\u8acb\u6c42\uff0c\u5229\u7528\u6b64\u6f0f\u6d1e\u9032\u800c\u9060\u7aef\u57f7\u884c\u4efb\u610f\u7a0b\u5f0f\u78bc\u3002<\/p>\n
Microsoft Windows\u9060\u7aef\u684c\u9762\u670d\u52d9(Remote Desktop Services)\uff0c\u4ea6\u5373\u5728Windows Server 2008\u53ca\u66f4\u65e9\u7248\u672c\u4e2d\u6240\u7a31\u4e4b\u7d42\u7aef\u670d\u52d9(Terminal Services)\uff0c\u8a72\u670d\u52d9\u5141\u8a31\u4f7f\u7528\u8005\u900f\u904e\u7db2\u8def\u9023\u7dda\u4f86\u9060\u7aef\u64cd\u4f5c\u96fb\u8166\u6216\u865b\u64ec\u6a5f\u3002<\/p>\n
\u6b64\u8a0a\u606f\u50c5\u767c\u9001\u5230\u300c\u5340\u7e23\u5e02\u7db2\u8def\u4e2d\u5fc3\u300d\uff0c\u7169\u8acb\u8cb4\u55ae\u4f4d\u5354\u52a9\u516c\u544a\u6216\u8f49\u767c [\u5f71\u97ff\u5e73\u53f0:]<\/p>\n
\u958b\u555f\u9060\u7aef\u684c\u9762\u670d\u52d9\u7684\u7cfb\u7d71 [\u5efa\u8b70\u63aa\u65bd:]<\/p>\n
1\u3001\u5efa\u8b70\u55ae\u4f4d\u95dc\u9589\u9060\u7aef\u684c\u9762(RDP)\u670d\u52d9\u3002<\/p>\n
2\u3001\u5b9a\u671f\u4fee\u88dc\u4f5c\u696d\u7cfb\u7d71\u6f0f\u6d1e\u3002<\/p>\n
3\u3001\u5982\u679c\u78ba\u5be6\u9700\u8981\u958b\u555f\u6b64\u9805\u670d\u52d9\uff0c\u5efa\u8b70\u5229\u7528\u9632\u706b\u7246\u4f86\u9650\u5236\u4f86\u6e90\u7aef\uff0c\u8a2d\u5b9a\u50c5\u5141\u8a31\u7ba1\u7406\u8005\u7684\u4e3b\u6a5f\u53ef\u767b\u5165\uff0c\u800c\u4e0d\u8981\u5c0d\u5916\u5b8c\u5168\u958b\u653e\u3002 [\u53c3\u8003\u8cc7\u6599:]<\/p>\n
1. https:\/\/thehackernews.com\/2019\/08\/windows-rdp-wormable-flaws.html<\/p>\n
2. https:\/\/www.ithome.com.tw\/news\/132413<\/p>\n
3 https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1222<\/p>\n
4. https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-1226<\/p>\n
5. https:\/\/www.nccst.nat.gov.tw\/VulnerabilityNewsDetail?lang=zh&seq=1441<\/p>\n
6. https:\/\/blogs.technet.microsoft.com\/msrc\/2019\/05\/14\/prevent-a-worm-by-updating-remote-desktop-services-cve-2019-0708\/<\/p>\n
7. https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-0708 […]<\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[6],"tags":[],"_links":{"self":[{"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/15960"}],"collection":[{"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/comments?post=15960"}],"version-history":[{"count":0,"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/posts\/15960\/revisions"}],"wp:attachment":[{"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/media?parent=15960"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/categories?post=15960"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/webnas.bhes.ntpc.edu.tw\/wordpress\/wp-json\/wp\/v2\/tags?post=15960"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}