更新 Windows 10:8 亿设备面临关键漏洞风险
星期五, 八月 23, 2019
微软称,未受保护的服务器无需用户互动即可在网络上传播病毒与恶意软件。
微软警告用户,应立即更新 Windows 10 操作系统,以免受关键漏洞危害。
该公司表示,未受保护的服务器可在网络上自发传播病毒和恶意软件,无需用户授意。开启自动更新功能的 Windows 10 设备已受到保护。
受影响 Windows 版本包括 Windows 7 SP1、Windows Server 2008 R2 SP1、Windows Server 2012、Windows 8.1、Windows Server 2012 R2 等。但 Windows XP 反而没事。
Windows 10 是世界上最流行的桌面操作系统。当前全球约有 8 亿台设备安装了 Windows 10 操作系统,也就是说,上亿设备面临风险。
微软安全响应中心 (MSRC) 事件响应主管 Simon Pope 表示:没有迹象表明第三方注意到了这些漏洞,但 “受影响系统最好尽快打上补丁,因为这种可变蠕虫的漏洞可能导致风险。
微软网站上已发布更新包。
另外,Windows 10 用户应安装可靠的杀毒软件,定期扫描设备,并使用可信 VPN 以保护在线隐私。
受漏洞影响的系统版本完整列表如下:
- Windows 10 Version 1703 for 32-bit Systems
- Windows 10 Version 1703 for x64-based Systems
- Windows 10 Version 1803 for 32-bit Systems
- Windows 10 Version 1803 for x64-based Systems
- Windows Server, version 1803 (Server Core Installation)
- Windows 10 Version 1803 for ARM64-based Systems
- Windows 10 Version 1809 for 32-bit Systems
- Windows 10 Version 1809 for x64-based Systems
- Windows 10 Version 1809 for ARM64-based Systems
- Windows Server 2019
- Windows Server 2019 (Server Core installation)
- Windows 10 Version 1709 for 32-bit Systems
- Windows 10 Version 1709 for 64-based Systems
- Windows 10 Version 1709 for ARM64-based Systems
- Windows 10 Version 1903 for 32-bit Systems
- Windows 10 Version 1903 for x64-based Systems
- Windows 10 Version 1903 for ARM64-based Systems
- Windows Server, version 1903 (Server Core installation)
- Windows 10 for 32-bit Systems
- Windows 10 for x64-based Systems
- Windows 10 Version 1607 for 32-bit Systems
- Windows 10 Version 1607 for x64-based Systems
- Windows Server 2016
- Windows Server 2016 (Server Core installation)
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems Service Pack 1
- Windows 8.1 for 32-bit systems
- Windows 8.1 for x64-based systems
- Windows RT 8.1
- Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1
- Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
- Windows Server 2012
- Windows Server 2012 (Server Core installation)
- Windows Server 2012 R2
- Windows Server 2012 R2 (Server Core installation)
漏洞地址:
Patch new wormable vulnerabilities in Remote Desktop Services (CVE-2019-1181/1182)
补丁地址:
Patch new wormable vulnerabilities in Remote Desktop Services (CVE-2019-1181/1182)
相关阅读
Windows 10 可通过语音指令绕过电脑锁屏