Utama Komputer Kemaskini Windows 10 terbaru untuk Februari 2020 diterbitkan, baiki 99 Masalah Kerentanan...

Kemaskini Windows 10 terbaru untuk Februari 2020 diterbitkan, baiki 99 Masalah Kerentanan Keselamatan

958
0

Microsoft hari ini telah menerbitkan kemaskini keselamatan February 2020 Patch Tuesday. Kemaskini bulan ini menyertakan pembaikan untuk 99 masalah kerentanan, menjadikan kemaskini Patch Tuesday terbesar Microsoft setakat ini.

Sorotan utama adalah pada pembaikan keselamatan untuk CVE-2020-0674, kerentanan hari sifar (zero day) di dalam Internet Explorer.

Pada 17 Januari lalu, Microsoft telah memaklumkan mengenai serangan yang dilakukan oleh penggodam melalui kerentanan yang terdapat pada Internet Explorer tersebut. Pembaikan untuk masalah tersebut turut disertakan bersama-sama dalam kemaskini terbaru ini.

Untuk baki 98 pembaikan lagi, 11 daripadanya dikategorikan sebagai pembaikan kritikal dan memerlukan perhatian segera.

Kebanyakan dari kerentanan kritikal berkenaan adalah kod pelaksana kawalan jauh (remote code execution). Selain itu, kerentanan perosak memori (memory corruption) pada perkhidmatan-perkhidmatan seperti enjin penskripan IE (IE scripting engine), perkhidmatan Remote Desktop Protocol, fail-fail LNK dan komponen Media Foundation.

Kemaskini Patch Tuesday pada kebiasaannya dihantar dalam bentuk pukal (bulk) dan pemasangan kemaskini ini secara automatiknya akan memasang pembaikan untuk 99 kerentanan keselamatan berkenaan.

Berikut adalah senarai bagi pembaikan-pembaikan yang disertakan di dalam kemaskini Windows 10 February 2020 Patch Tuesday

TagCVE IDCVE Title
Adobe Flash PlayerADV200003February 2020 Adobe Flash Security Update
Internet ExplorerCVE-2020-0674Scripting Engine Memory Corruption Vulnerability
Internet ExplorerCVE-2020-0673Scripting Engine Memory Corruption Vulnerability
Microsoft EdgeCVE-2020-0663Microsoft Edge Elevation of Privilege Vulnerability
Microsoft EdgeCVE-2020-0706Microsoft Browser Information Disclosure Vulnerability
Microsoft Exchange ServerCVE-2020-0692Microsoft Exchange Server Elevation of Privilege Vulnerability
Microsoft Exchange ServerCVE-2020-0688Microsoft Exchange Memory Corruption Vulnerability
Microsoft Exchange ServerCVE-2020-0696Microsoft Outlook Security Feature Bypass Vulnerability
Microsoft Graphics ComponentCVE-2020-0744Windows GDI Information Disclosure Vulnerability
Microsoft Graphics ComponentCVE-2020-0745Windows Graphics Component Elevation of Privilege Vulnerability
Microsoft Graphics ComponentCVE-2020-0714DirectX Information Disclosure Vulnerability
Microsoft Graphics ComponentCVE-2020-0715Windows Graphics Component Elevation of Privilege Vulnerability
Microsoft Graphics ComponentCVE-2020-0746Microsoft Graphics Components Information Disclosure Vulnerability
Microsoft Graphics ComponentCVE-2020-0709DirectX Elevation of Privilege Vulnerability
Microsoft Graphics ComponentCVE-2020-0792Windows Graphics Component Elevation of Privilege Vulnerability
Microsoft Malware Protection EngineCVE-2020-0733Windows Malicious Software Removal Tool Elevation of Privilege Vulnerability
Microsoft OfficeCVE-2020-0697Microsoft Office Tampering Vulnerability
Microsoft OfficeCVE-2020-0759Microsoft Excel Remote Code Execution Vulnerability
Microsoft OfficeCVE-2020-0695Microsoft Office Online Server Spoofing Vulnerability
Microsoft Office SharePointCVE-2020-0694Microsoft Office SharePoint XSS Vulnerability
Microsoft Office SharePointCVE-2020-0693Microsoft Office SharePoint XSS Vulnerability
Microsoft Scripting EngineCVE-2020-0713Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2020-0711Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2020-0710Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2020-0712Scripting Engine Memory Corruption Vulnerability
Microsoft Scripting EngineCVE-2020-0767Scripting Engine Memory Corruption Vulnerability
Microsoft WindowsCVE-2020-0741Connected Devices Platform Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0742Connected Devices Platform Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0740Connected Devices Platform Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0658Windows Common Log File System Driver Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0737Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0659Windows Data Sharing Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0739Windows Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0757Windows SSH Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0732DirectX Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0753Windows Error Reporting Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0755Windows Key Isolation Service Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0754Windows Error Reporting Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0657Windows Common Log File System Driver Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0667Windows Search Indexer Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0743Connected Devices Platform Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0666Windows Search Indexer Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0748Windows Key Isolation Service Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0747Windows Data Sharing Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0668Windows Kernel Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0704Windows Wireless Network Manager Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0685Windows COM Server Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0676Windows Key Isolation Service Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0678Windows Error Reporting Manager Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0703Windows Backup Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0680Windows Function Discovery Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0679Windows Function Discovery Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0681Remote Desktop Client Remote Code Execution Vulnerability
Microsoft WindowsCVE-2020-0677Windows Key Isolation Service Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0682Windows Function Discovery Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0756Windows Key Isolation Service Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0670Windows Kernel Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0675Windows Key Isolation Service Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0669Windows Kernel Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0727Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0671Windows Kernel Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0672Windows Kernel Elevation of Privilege Vulnerability
Microsoft WindowsCVE-2020-0698Windows Information Disclosure Vulnerability
Microsoft WindowsCVE-2020-0701Windows Client License Service Elevation of Privilege Vulnerability
Microsoft Windows Search ComponentCVE-2020-0735Windows Search Indexer Elevation of Privilege Vulnerability
Remote Desktop ClientCVE-2020-0734Remote Desktop Client Remote Code Execution Vulnerability
Secure BootCVE-2020-0689Microsoft Secure Boot Security Feature Bypass Vulnerability
SQL ServerCVE-2020-0618Microsoft SQL Server Reporting Services Remote Code Execution Vulnerability
Windows Authentication MethodsCVE-2020-0665Active Directory Elevation of Privilege Vulnerability
Windows COMCVE-2020-0752Windows Search Indexer Elevation of Privilege Vulnerability
Windows COMCVE-2020-0749Connected Devices Platform Service Elevation of Privilege Vulnerability
Windows COMCVE-2020-0750Connected Devices Platform Service Elevation of Privilege Vulnerability
Windows Hyper-VCVE-2020-0751Windows Hyper-V Denial of Service Vulnerability
Windows Hyper-VCVE-2020-0662Windows Remote Code Execution Vulnerability
Windows Hyper-VCVE-2020-0661Windows Hyper-V Denial of Service Vulnerability
Windows InstallerCVE-2020-0686Windows Installer Elevation of Privilege Vulnerability
Windows InstallerCVE-2020-0683Windows Installer Elevation of Privilege Vulnerability
Windows InstallerCVE-2020-0728Windows Modules Installer Service Information Disclosure Vulnerability
Windows KernelCVE-2020-0722Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0721Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0719Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0720Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0723Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0731Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0726Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0724Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0725Win32k Elevation of Privilege Vulnerability
Windows KernelCVE-2020-0717Win32k Information Disclosure Vulnerability
Windows KernelCVE-2020-0736Windows Kernel Information Disclosure Vulnerability
Windows KernelCVE-2020-0716Win32k Information Disclosure Vulnerability
Windows Kernel-Mode DriversCVE-2020-0691Win32k Elevation of Privilege Vulnerability
Windows MediaCVE-2020-0738Media Foundation Memory Corruption Vulnerability
Windows NDISCVE-2020-0705Windows Network Driver Interface Specification (NDIS) Information Disclosure Vulnerability
Windows RDPCVE-2020-0660Windows Remote Desktop Protocol (RDP) Denial of Service Vulnerability
Windows ShellCVE-2020-0702Surface Hub Security Feature Bypass Vulnerability
Windows ShellCVE-2020-0655Remote Desktop Services Remote Code Execution Vulnerability
Windows ShellCVE-2020-0730Windows User Profile Service Elevation of Privilege Vulnerability
Windows ShellCVE-2020-0729LNK Remote Code Execution Vulnerability
Windows ShellCVE-2020-0707Windows IME Elevation of Privilege Vulnerability
Windows Update StackCVE-2020-0708Windows Imaging Library Remote Code Execution Vulnerability

 

Tinggalkan komentar

This site uses Akismet to reduce spam. Learn how your comment data is processed.