cnvd-2018-08935
Vulnerability from cnvd
Title
Microsoft Active Directory安全绕过漏洞
Description
Microsoft Windows 10、Windows Server 2016和Windows Server Version 1709都是美国微软(Microsoft)公司的产品。Microsoft Windows 10是一套跨平台操作系统,它适用于PC和笔记本电脑、平板电脑以及手机等设备。Windows Server 2016和Windows Server Version 1709都是服务器操作系统。Active Directory是其中的一个活动目录组件。 Microsoft Active Directory中存在安全绕过漏洞,该漏洞源于程序未能正确的应用Network Isolation的设置。攻击者可通过运行特制的应用程序利用该漏洞绕过防火墙策略。
Severity
Patch Name
Microsoft Active Directory安全绕过漏洞的补丁
Patch Description
Microsoft Windows 10、Windows Server 2016和Windows Server Version 1709都是美国微软(Microsoft)公司的产品。Microsoft Windows 10是一套跨平台操作系统,它适用于PC和笔记本电脑、平板电脑以及手机等设备。Windows Server 2016和Windows Server Version 1709都是服务器操作系统。Active Directory是其中的一个活动目录组件。 Microsoft Active Directory中存在安全绕过漏洞,该漏洞源于程序未能正确的应用Network Isolation的设置。攻击者可通过运行特制的应用程序利用该漏洞绕过防火墙策略。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description

目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0890

Reference
https://nvd.nist.gov/vuln/detail/CVE-2018-0890
Impacted products
Name
['Microsoft Windows 10', 'Microsoft Windows Server 2016', 'Microsoft Windows Server 1709']
Show details on source website

To clipboard 

{
  "bids": {
    "bid": {
      "bidNumber": "103649"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2018-0890",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2018-0890"
    }
  },
  "description": "Microsoft Windows 10\u3001Windows Server 2016\u548cWindows Server Version 1709\u90fd\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Microsoft Windows 10\u662f\u4e00\u5957\u8de8\u5e73\u53f0\u64cd\u4f5c\u7cfb\u7edf\uff0c\u5b83\u9002\u7528\u4e8ePC\u548c\u7b14\u8bb0\u672c\u7535\u8111\u3001\u5e73\u677f\u7535\u8111\u4ee5\u53ca\u624b\u673a\u7b49\u8bbe\u5907\u3002Windows Server 2016\u548cWindows Server Version 1709\u90fd\u662f\u670d\u52a1\u5668\u64cd\u4f5c\u7cfb\u7edf\u3002Active Directory\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u6d3b\u52a8\u76ee\u5f55\u7ec4\u4ef6\u3002\r\n\r\nMicrosoft Active Directory\u4e2d\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u5e94\u7528Network Isolation\u7684\u8bbe\u7f6e\u3002\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8fd0\u884c\u7279\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u9632\u706b\u5899\u7b56\u7565\u3002",
  "discovererName": "Microsoft",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2018-0890",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2018-08935",
  "openTime": "2018-05-04",
  "patchDescription": "Microsoft Windows 10\u3001Windows Server 2016\u548cWindows Server Version 1709\u90fd\u662f\u7f8e\u56fd\u5fae\u8f6f\uff08Microsoft\uff09\u516c\u53f8\u7684\u4ea7\u54c1\u3002Microsoft Windows 10\u662f\u4e00\u5957\u8de8\u5e73\u53f0\u64cd\u4f5c\u7cfb\u7edf\uff0c\u5b83\u9002\u7528\u4e8ePC\u548c\u7b14\u8bb0\u672c\u7535\u8111\u3001\u5e73\u677f\u7535\u8111\u4ee5\u53ca\u624b\u673a\u7b49\u8bbe\u5907\u3002Windows Server 2016\u548cWindows Server Version 1709\u90fd\u662f\u670d\u52a1\u5668\u64cd\u4f5c\u7cfb\u7edf\u3002Active Directory\u662f\u5176\u4e2d\u7684\u4e00\u4e2a\u6d3b\u52a8\u76ee\u5f55\u7ec4\u4ef6\u3002\r\n\r\nMicrosoft Active Directory\u4e2d\u5b58\u5728\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u6b63\u786e\u7684\u5e94\u7528Network Isolation\u7684\u8bbe\u7f6e\u3002\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u8fd0\u884c\u7279\u5236\u7684\u5e94\u7528\u7a0b\u5e8f\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u9632\u706b\u5899\u7b56\u7565\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Microsoft Active Directory\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Microsoft Windows 10",
      "Microsoft Windows Server 2016",
      "Microsoft Windows Server 1709"
    ]
  },
  "referenceLink": "https://nvd.nist.gov/vuln/detail/CVE-2018-0890",
  "serverity": "\u4e2d",
  "submitTime": "2018-04-12",
  "title": "Microsoft Active Directory\u5b89\u5168\u7ed5\u8fc7\u6f0f\u6d1e"
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.