散文網(wǎng) » 生活 »日常 » 零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼

零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼

2021-07-01 16:47 作者:AidiLi 0人讀過(guò) | 我要投稿

中國(guó)安全公司深信服（Sangfor）近日發(fā)現(xiàn)了名為?PrintNightmare?的零日漏洞，允許黑客在補(bǔ)丁完善的 Windows Print Spooler 設(shè)備上獲得完整的遠(yuǎn)程代碼執(zhí)行能力，該公司還發(fā)布了概念證明代碼。

在 6 月補(bǔ)丁星期二活動(dòng)日中，微軟發(fā)布的安全累積更新中修復(fù)了一個(gè)類似的 Print Spooler 漏洞。但是對(duì)于已經(jīng)打過(guò)補(bǔ)丁的 Windows Server 2019設(shè)備，PrintNightmare 漏洞依然有效，并允許攻擊者遠(yuǎn)程執(zhí)行代碼。

根據(jù)概念證明代碼顯示，黑客只需要一些（甚至是低權(quán)限）的網(wǎng)絡(luò)憑證就可以利用該漏洞進(jìn)行遠(yuǎn)程執(zhí)行，而且這些憑證在暗網(wǎng)上只需要 3 美元就能買(mǎi)到。這意味著企業(yè)網(wǎng)絡(luò)又極易受到（尤其是勒索軟件）的攻擊，安全研究人員建議企業(yè)禁用其 Windows Print Spoolers。

影響版本

Windows Server 2019 (Server Core installation)

Windows Server 2019

Windows Server 2016 (Server Core installation)

Windows Server 2016

Windows Server 2012 R2 (Server Core installation)

Windows Server 2012 R2

Windows Server 2012 (Server Core installation)

Windows Server 2012

Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2008 R2 for x64-based Systems Service Pack 1

Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for x64-based Systems Service Pack 2

Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)

Windows Server 2008 for 32-bit Systems Service Pack 2

Windows Server, version 2004 (Server Core installation)

Windows RT 8.1

Windows 8.1 for x64-based systems

Windows 8.1 for 32-bit systems

Windows 7 for x64-based Systems Service Pack 1

Windows 7 for 32-bit Systems Service Pack 1

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows Server, version 20H2 (Server Core Installation)

Windows 10 Version 20H2 for ARM64-based Systems

Windows 10 Version 20H2 for 32-bit Systems

Windows 10 Version 20H2 for x64-based Systems

Windows 10 Version 2004 for x64-based Systems

Windows 10 Version 2004 for ARM64-based Systems

Windows 10 Version 2004 for 32-bit Systems

Windows 10 Version 21H1 for 32-bit Systems

Windows 10 Version 21H1 for ARM64-based Systems

Windows 10 Version 21H1 for x64-based Systems

Windows 10 Version 1909 for ARM64-based Systems

Windows 10 Version 1909 for x64-based Systems

Windows 10 Version 1909 for 32-bit Systems

Windows 10 Version 1809 for ARM64-based Systems

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

標(biāo)簽：

零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼的評(píng)論 (共條)

愛(ài)情散文傷感散文哲理散文優(yōu)美生活隨筆親情唯美句子傷感的句子現(xiàn)代詩(shī)歌空間日志經(jīng)典語(yǔ)句愛(ài)情句子作文大全

最美情侣中文字幕电影,在线麻豆精品传媒,在线网站高清黄,久久黄色视频

零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼

零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼的評(píng)論 (共條)

你可能也喜歡這些文章

最新發(fā)布的文章

最美情侣中文字幕电影,在线麻豆精品传媒,在线网站高清黄,久久黄色视频

零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼

本文作者的其他文章

零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼的評(píng)論 (共 條)

你可能也喜歡這些文章

最新發(fā)布的文章

零日漏洞PrintNightmare曝光：可在Windows后臺(tái)執(zhí)行遠(yuǎn)程代碼的評(píng)論 (共條)