ثغرة ZeroDayVulnerability ب Microsoft Graphics
Component
السلام
عليكـــــم و رحمة الله وبركــــاته
مع جديد
عالم الهكر و الثغرات , قامت ميكروسوفت بإصلاح ثغرة 0Day Vulnerability بشكل مؤقت , هذه الثغرة التي تمكن مستخدميها من تثبيت
برامج ملغومة أو فيروسات من خلال ملف وورد .
و هذه
الثغرة (0day Remote code execution), و التي أطلقت عليها ميكروسوفت
اسم CVE-2013-3906 , تستغل المشكل ب Microsoft Graphics Component لاستهداف مستعملي Microsoft office على أنظمة Vista و Windows
Server 2008 و هي من اكتشاف Haifei
Li خبير و باحث بالحماية
المعلوماتية ب McAfee .
من هذا
المنطلق , فهجوم ناجح باستغلال هذه الثغرة سيمكن الهكر من التحكم بنظام الضحية
بشكل كامل , و هذا قد يكون بغاية الخطورة بالنسبة لمديري المواقع و الشبكات.
أما
منتجات ميكروسوفت المصابة :
Windows Operating System
|
Windows Vista Service Pack 2
|
Windows Vista x64 Edition Service Pack 2
|
Windows Server 2008 for 32-bit Systems Service Pack 2
|
Windows Server 2008 for x64-based Systems Service Pack 2
|
Windows Server 2008 for Itanium-based Systems Service Pack 2
|
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core
installation)
|
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core
installation)
|
Microsoft Office Suites and Software
|
Microsoft Office 2003 Service Pack 3
|
Microsoft Office 2007 Service Pack 3
|
Microsoft Office 2010 Service Pack 1 (32-bit editions)
|
Microsoft Office 2010 Service Pack 2 (32-bit editions)
|
Microsoft Office 2010 Service Pack 1 (64-bit editions)
|
Microsoft Office 2010 Service Pack 2 (64-bit editions)
|
Microsoft Office Compatibility Pack Service Pack 3
|
Microsoft Communication Platforms and Software
|
Microsoft Lync 2010 (32-bit)
|
Microsoft Lync 2010 (64-bit)
|
Microsoft Lync 2010 Attendee
|
Microsoft Lync 2013 (32-bit)
|
Microsoft Lync Basic 2013 (32-bit)
|
Microsoft Lync 2013 (64-bit)
|
Microsoft Lync Basic 2013 (64-bit)
|
المنتجات الغير المصابة :
Windows Operating System
|
Windows XP Service Pack 3
|
Windows XP Professional x64 Edition Service Pack 2
|
Windows Server 2003 Service Pack 2
|
Windows Server 2003 x64 Edition Service Pack 2
|
Windows Server 2003 for Itanium-based Systems Service Pack 2
|
Windows 7 for 32-bit Systems Service Pack 1
|
Windows 7 for x64-based Systems Service Pack 1
|
Windows Server 2008 R2 for x64-based Systems Service Pack 1
|
Windows Server 2008 R2 for Itanium-based Systems Service Pack 1
|
Windows 8 for 32-bit Systems
|
Windows 8 for x64-based Systems
|
Windows 8.1 for 32-bit Systems
|
Windows 8.1 for x64-based Systems
|
Windows RT
|
Windows RT 8.1
|
Windows Server 2012
|
Windows Server 2012 R2
|
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core
installation)
|
Windows Server 2012 (Server Core installation)
|
Windows Server 2012 R2 (Server Core installation)
|
Microsoft Office Suites and Software
|
Microsoft Office 2013 (32-bit editions)
|
Microsoft Office 2013 (64-bit editions)
|
Microsoft Office 2013 RT
|
Microsoft Communication Platforms and Software
|
Microsoft Speech Server 2004
|
Microsoft Speech Server 2004 R2
|
Microsoft Live Meeting 2007 Console
|
Microsoft Live Communications Server 2003
|
Microsoft Live Communications Server 2005 Service Pack 1
|
Microsoft Communicator 2005
|
Microsoft Communicator 2005 Web Access
|
Microsoft Communicator 2007
|
Microsoft Communicator 2007 R2
|
Microsoft Communicator 2007 Web Access
|
Microsoft Communications Server 2007
|
Microsoft Communications Server 2007 Speech Server
|
Microsoft Communications Server 2007 R2
|
Microsoft Communicator 2007 R2 Attendant
|
Microsoft Communicator 2007 R2 Group Chat Admin
|
Microsoft Communicator 2007 R2 Group Chat Client
|
Microsoft Communicator for Mac 2011
|
Microsoft Lync for Mac 2011
|
Microsoft Lync 2010 Attendant (32-bit)
|
Microsoft Lync 2010 Attendant (64-bit)
|
Microsoft Lync Server 2010
|
Microsoft Lync Server 2013
|
Microsoft Lync Web Access 2013
|
0 comments:
إرسال تعليق
أضف تعليقك