好的,我现在需要帮用户总结这篇文章的内容,控制在100字以内。首先,我得仔细阅读文章,抓住关键信息。 文章主要讲的是微软发布了一个针对Windows 11 Enterprise设备的紧急更新KB5084597。这个更新修复了RRAS管理工具中的漏洞,这些漏洞可能导致远程代码执行。微软提到这些漏洞影响的是使用热补丁更新的企业设备,而不是常规的Patch Tuesday更新。 接下来,文章提到这个热补丁是累积性的,包含了三月份的安全更新修复。热补丁的好处是不需要重启设备,适用于关键任务系统。微软还说明了之前已经发布了修复补丁,这次重新发布是为了确保全面覆盖所有受影响的情况。 用户的要求是用中文总结,不超过100字,并且不要以“文章内容总结”之类的开头。我需要把重点放在微软发布热补丁、修复RRAS漏洞、影响范围以及热补丁的优势上。 现在开始组织语言:微软发布了一个热补丁KB5084597,修复了Windows 11 Enterprise中的RRAS漏洞,防止远程代码执行。这个补丁适用于使用热更新的企业设备,并且无需重启即可应用修复。 检查一下字数是否在限制内,并且是否涵盖了所有关键点。看起来没问题。 </think> 微软发布KB5084597热补丁修复Windows 11 Enterprise中RRAS工具的远程代码执行漏洞,仅影响使用热更新的企业设备。该补丁为累积性更新,无需重启即可应用修复。 2026-3-14 22:0:20 Author: www.bleepingcomputer.com(查看原文) 阅读量:8 收藏
Microsoft has released an out-of-band (OOB) update to fix a security vulnerabilities affecting Windows 11 Enterprise devices that receive hotpatch updates instead of the regular Patch Tuesday cumulative updates.
The KB5084597 hotpatch update was released yesterday to fix vulnerabilities in the Windows Routing and Remote Access Service (RRAS) management tool that could allow remote code execution when connecting to a malicious server.
"Microsoft has identified a security issue in the Windows Routing and Remote Access Service (RRAS) management tool that could allow remote code execution when connecting to a malicious server," reads an advisory from Microsoft.
"This issue only applies to a limited set of scenarios involving Enterprise client devices running hotpatch updates and being used for remote server management."
The KB5084597 update is for Windows 11 versions 25H2 and 24H2, as well as Windows 11 Enterprise LTSC 2024 systems.
Microsoft says the vulnerabilities fixed by this hotpatch are tracked as CVE-2026-25172, CVE-2026-25173, and CVE-2026-26111, which were fixed as part of the March 2026 Patch Tuesday updates.
"An attacker authenticated on the domain could exploit this vulnerability by tricking a domain-joined user into sending a request to a malicious server via the Routing and Remote Access Service (RRAS) Snap-in," reads the description for all three flaws.
The company says the hotpatch update is cumulative and includes all fixes and improvements from the March 2026 Windows security update released on March 10.
While the vulnerabilities were already fixed on Patch Tuesday, installing cumulative updates requires devices to be rebooted. However, some devices are used for mission-critical applications and services that cannot be easily rebooted.
To protect these types of devices, hotpatch updates apply new vulnerability fixes by performing in-memory patching of running processes to deliver fixes. At the same time, they update the files on disk so that the next time the device reboots, the fixes are still present.
Microsoft says it previously released hotfixes for these flaws, but re-released them yesterday "ensure comprehensive coverage across all affected scenarios."
However, Microsoft says the hotpatch will only be offered to devices enrolled in the hotpatch update program and managed through Windows Autopatch, where it will be installed automatically without requiring a restart.
Red Report 2026: Why Ransomware Encryption Dropped 38%
Malware is getting smarter. The Red Report 2026 reveals how new threats use math to detect sandboxes and hide in plain sight.
Download our analysis of 1.1 million malicious samples to uncover the top 10 techniques and see if your security stack is blinded.
如有侵权请联系:admin#unsafe.sh