Haberler

Microsoft Aralık Patch Tuesday: 6 Zero-day 67 Zafiyet Kapatıldı

Microsoft bu ay yayınladığı Patch Tuesday yamaları ile altı sıfırıncı gün güvenlik açığı ve toplam 67 zafiyeti kapattı.  Bu güncellemeler, kötü amaçlı yazılım dağıtım kampanyalarında kullanılan, etkin bir şekilde yararlanılan Windows Installer güvenlik açığı için bir düzeltme içeriyor.

Microsoft, yayınladığı güncellemeler ile 7’i kritik ve 60’ı Önemli olarak sınıflandırılan 67 güvenlik açığını (Microsoft Edge dahil değil) düzeltti.

  • 21 Elevation of Privilege Vulnerabilities
  • 26 Remote Code Execution Vulnerabilities
  • 10 Information Disclosure Vulnerabilities
  • 3 Denial of Service Vulnerabilities
  • 7 Spoofing Vulnerabilities

Altı sıfır gün düzeltildi, ikisi aktif olarak sömürüldü

Aktif olarak sömürülen Windows AppX Installer sıfır gün güvenlik açığı, CVE-2021-43890 olarak izlenebiliyor ve Emotet, TrickBot ve BazarLoader dahil olmak üzere çeşitli kötü amaçlı yazılım dağıtım kampanyalarında kullanılıyor.

Microsoft ayrıca beş sıfır gün güvenlik açığını da düzeltti.

  • CVE-2021-43240 – NTFS Set Short Name Elevation of Privilege Vulnerability
  • CVE-2021-41333 – Windows Print Spooler Elevation of Privilege Vulnerability
  • CVE-2021-43880 – Windows Mobile Device Management Elevation of Privilege Vulnerability
  • CVE-2021-43883 – Windows Installer Elevation of Privilege Vulnerability
  • CVE-2021-43893 – Windows Encrypting File System (EFS) Elevation of Privilege Vulnerability

Aralık 2021 Patch Tuesday Güvenlik Güncellemeleri

TagCVE IDCVE TitleSeverity
AppsCVE-2021-43890Windows AppX Installer Spoofing VulnerabilityImportant
ASP.NET Core & Visual StudioCVE-2021-43877ASP.NET Core and Visual Studio Elevation of Privilege VulnerabilityImportant
Azure Bot Framework SDKCVE-2021-43225Bot Framework SDK Remote Code Execution VulnerabilityImportant
BizTalk ESB ToolkitCVE-2021-43892Microsoft BizTalk ESB Toolkit Spoofing VulnerabilityImportant
Internet Storage Name ServiceCVE-2021-43215iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code ExecutionCritical
Microsoft Defender for IoTCVE-2021-41365Microsoft Defender for IoT Remote Code Execution VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-42311Microsoft Defender for IoT Remote Code Execution VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-42310Microsoft Defender for IoT Remote Code Execution VulnerabilityCritical
Microsoft Defender for IoTCVE-2021-43882Microsoft Defender for IoT Remote Code Execution VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-43888Microsoft Defender for IoT Information Disclosure VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-42314Microsoft Defender for IoT Remote Code Execution VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-42313Microsoft Defender for IoT Remote Code Execution VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-42312Microsoft Defender for IOT Elevation of Privilege VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-43889Microsoft Defender for IoT Remote Code Execution VulnerabilityImportant
Microsoft Defender for IoTCVE-2021-42315Microsoft Defender for IoT Remote Code Execution VulnerabilityImportant
Microsoft DevicesCVE-2021-43899Microsoft 4K Wireless Display Adapter Remote Code Execution VulnerabilityCritical
Microsoft Edge (Chromium-based)CVE-2021-4056Chromium: CVE-2021-4056: Type Confusion in loaderUnknown
Microsoft Edge (Chromium-based)CVE-2021-4055Chromium: CVE-2021-4055 Heap buffer overflow in extensionsUnknown
Microsoft Edge (Chromium-based)CVE-2021-4054Chromium: CVE-2021-4054 Incorrect security UI in autofillUnknown
Microsoft Edge (Chromium-based)CVE-2021-4052Chromium: CVE-2021-4052 Use after free in web appsUnknown
Microsoft Edge (Chromium-based)CVE-2021-4053Chromium: CVE-2021-4053 Use after free in UIUnknown
Microsoft Edge (Chromium-based)CVE-2021-4065Chromium: CVE-2021-4065 Use after free in autofillUnknown
Microsoft Edge (Chromium-based)CVE-2021-4064Chromium: CVE-2021-4064 Use after free in screen captureUnknown
Microsoft Edge (Chromium-based)CVE-2021-4063Chromium: CVE-2021-4063 Use after free in developer toolsUnknown
Microsoft Edge (Chromium-based)CVE-2021-4068Chromium: CVE-2021-4068 Insufficient validation of untrusted input in new tab pageUnknown
Microsoft Edge (Chromium-based)CVE-2021-4067Chromium: CVE-2021-4067 Use after free in window managerUnknown
Microsoft Edge (Chromium-based)CVE-2021-4066Chromium: CVE-2021-4066 Integer underflow in ANGLEUnknown
Microsoft Edge (Chromium-based)CVE-2021-4059Chromium: CVE-2021-4059 Insufficient data validation in loaderUnknown
Microsoft Edge (Chromium-based)CVE-2021-4062Chromium: CVE-2021-4062 Heap buffer overflow in BFCacheUnknown
Microsoft Edge (Chromium-based)CVE-2021-4061Chromium: CVE-2021-4061 Type Confusion in V8Unknown
Microsoft Edge (Chromium-based)CVE-2021-4058Chromium: CVE-2021-4058 Heap buffer overflow in ANGLEUnknown
Microsoft Edge (Chromium-based)CVE-2021-4057Chromium: CVE-2021-4057 Use after free in file APIUnknown
Microsoft Local Security Authority Server (lsasrv)CVE-2021-43216Microsoft Local Security Authority Server (lsasrv) Information Disclosure VulnerabilityImportant
Microsoft Message QueuingCVE-2021-43236Microsoft Message Queuing Information Disclosure VulnerabilityImportant
Microsoft Message QueuingCVE-2021-43222Microsoft Message Queuing Information Disclosure VulnerabilityImportant
Microsoft OfficeCVE-2021-43875Microsoft Office Graphics Remote Code Execution VulnerabilityImportant
Microsoft OfficeCVE-2021-42295Visual Basic for Applications Information Disclosure VulnerabilityImportant
Microsoft OfficeCVE-2021-43905Microsoft Office app Remote Code Execution VulnerabilityCritical
Microsoft Office AccessCVE-2021-42293Microsoft Jet Red Database Engine and Access Connectivity Engine Elevation of Privilege VulnerabilityImportant
Microsoft Office ExcelCVE-2021-43256Microsoft Excel Remote Code Execution VulnerabilityImportant
Microsoft Office SharePointCVE-2021-42309Microsoft SharePoint Server Remote Code Execution VulnerabilityImportant
Microsoft Office SharePointCVE-2021-42320Microsoft SharePoint Server Spoofing VulnerabilityImportant
Microsoft Office SharePointCVE-2021-43242Microsoft SharePoint Server Spoofing VulnerabilityImportant
Microsoft Office SharePointCVE-2021-42294Microsoft SharePoint Server Remote Code Execution VulnerabilityImportant
Microsoft PowerShellCVE-2021-43896Microsoft PowerShell Spoofing VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-41360HEVC Video Extensions Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-43248Windows Digital Media Receiver Elevation of Privilege VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-43214Web Media Extensions Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-40452HEVC Video Extensions Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-40453HEVC Video Extensions Remote Code Execution VulnerabilityImportant
Microsoft Windows Codecs LibraryCVE-2021-43243VP9 Video Extensions Information Disclosure VulnerabilityImportant
Office Developer PlatformCVE-2021-43255Microsoft Office Trust Center Spoofing VulnerabilityImportant
Remote Desktop ClientCVE-2021-43233Remote Desktop Client Remote Code Execution VulnerabilityCritical
Role: Windows Fax ServiceCVE-2021-43234Windows Fax Service Remote Code Execution VulnerabilityImportant
Role: Windows Hyper-VCVE-2021-43246Windows Hyper-V Denial of Service VulnerabilityImportant
Visual Studio CodeCVE-2021-43891Visual Studio Code Remote Code Execution VulnerabilityImportant
Visual Studio CodeCVE-2021-43908Visual Studio Code Spoofing VulnerabilityImportant
Visual Studio Code – WSL ExtensionCVE-2021-43907Visual Studio Code WSL Extension Remote Code Execution VulnerabilityCritical
Windows Common Log File System DriverCVE-2021-43226Windows Common Log File System Driver Elevation of Privilege VulnerabilityImportant
Windows Common Log File System DriverCVE-2021-43224Windows Common Log File System Driver Information Disclosure VulnerabilityImportant
Windows Common Log File System DriverCVE-2021-43207Windows Common Log File System Driver Elevation of Privilege VulnerabilityImportant
Windows Digital TV TunerCVE-2021-43245Windows Digital TV Tuner Elevation of Privilege VulnerabilityImportant
Windows DirectXCVE-2021-43219DirectX Graphics Kernel File Denial of Service VulnerabilityImportant
Windows Encrypting File System (EFS)CVE-2021-43217Windows Encrypting File System (EFS) Remote Code Execution VulnerabilityCritical
Windows Encrypting File System (EFS)CVE-2021-43893Windows Encrypting File System (EFS) Elevation of Privilege VulnerabilityImportant
Windows Event TracingCVE-2021-43232Windows Event Tracing Remote Code Execution VulnerabilityImportant
Windows InstallerCVE-2021-43883Windows Installer Elevation of Privilege VulnerabilityImportant
Windows KernelCVE-2021-43244Windows Kernel Information Disclosure VulnerabilityImportant
Windows MediaCVE-2021-40441Windows Media Center Elevation of Privilege VulnerabilityImportant
Windows Mobile Device ManagementCVE-2021-43880Windows Mobile Device Management Elevation of Privilege VulnerabilityImportant
Windows NTFSCVE-2021-43240NTFS Set Short Name Elevation of Privilege VulnerabilityImportant
Windows NTFSCVE-2021-43231Windows NTFS Elevation of Privilege VulnerabilityImportant
Windows NTFSCVE-2021-43230Windows NTFS Elevation of Privilege VulnerabilityImportant
Windows NTFSCVE-2021-43229Windows NTFS Elevation of Privilege VulnerabilityImportant
Windows Print Spooler ComponentsCVE-2021-41333Windows Print Spooler Elevation of Privilege VulnerabilityImportant
Windows Remote Access Connection ManagerCVE-2021-43223Windows Remote Access Connection Manager Elevation of Privilege VulnerabilityImportant
Windows Remote Access Connection ManagerCVE-2021-43238Windows Remote Access Elevation of Privilege VulnerabilityImportant
Windows StorageCVE-2021-43235Storage Spaces Controller Information Disclosure VulnerabilityImportant
Windows Storage Spaces ControllerCVE-2021-43227Storage Spaces Controller Information Disclosure VulnerabilityImportant
Windows SymCryptCVE-2021-43228SymCrypt Denial of Service VulnerabilityImportant
Windows TCP/IPCVE-2021-43247Windows TCP/IP Driver Elevation of Privilege VulnerabilityImportant
Windows Update StackCVE-2021-43237Windows Setup Elevation of Privilege VulnerabilityImportant
Windows Update StackCVE-2021-43239Windows Recovery Environment Agent Elevation of Privilege VulnerabilityImportant

Kaynak: bleepingcomputer.com

İlgili Makaleler

Bir yanıt yazın

E-posta adresiniz yayınlanmayacak. Gerekli alanlar * ile işaretlenmişlerdir

Başa dön tuşu