公告编号:2020-08-11
公告标题:微软2020年8月安全更新
公告链接:https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Aug
厂 商:Microsoft (http://technet.microsoft.com/security/bulletin/)
发布时间:2020-08-11
更新时间:2020-08-17
微软发布08月份安全公告 修复了120个安全漏洞
发布日期:2020-08-11
综述 :
======
微软发布了08月份多个安全公告,本月安全补丁包含以下软件的安全更新:
Microsoft Windows
Microsoft Edge (EdgeHTML-based)
Microsoft Edge (Chromium-based)
Microsoft ChakraCore
Internet Explorer
Microsoft Scripting Engine
SQL Server
Microsoft JET Database Engine
.NET Framework
ASP.NET Core
Microsoft Office and Microsoft Office Services and Web Apps
Microsoft Windows Codecs Library
Microsoft Dynamics
这些漏洞可导致权限提升、信息泄露、远程代码执行、内存破坏和拒绝服务等。修复的漏洞CVE编号列表如下:
CVE-2020-1476
ASP.NET and .NET Elevation of Privilege Vulnerability
CVE-2020-1046
.NET Framework Remote Code Execution Vulnerability
CVE-2020-1597
ASP.NET Core Denial of Service Vulnerability
CVE-2020-1567
MSHTML Engine Remote Code Execution Vulnerability
CVE-2020-1591
Microsoft Dynamics 365 (On-Premise) Cross Site Scripting Vulnerability
CVE-2020-1569
Microsoft Edge Memory Corruption Vulnerability
CVE-2020-1568
Microsoft Edge PDF Remote Code Execution Vulnerability
CVE-2020-1562
Microsoft Graphics Components Remote Code Execution Vulnerability
CVE-2020-1577
DirectWrite Information Disclosure Vulnerability
CVE-2020-1561
Microsoft Graphics Components Remote Code Execution Vulnerability
CVE-2020-1510
Win32k Information Disclosure Vulnerability
CVE-2020-1529
Windows GDI Elevation of Privilege Vulnerability
CVE-2020-1473
Jet Database Engine Remote Code Execution Vulnerability
CVE-2020-1558
Jet Database Engine Remote Code Execution Vulnerability
CVE-2020-1557
Jet Database Engine Remote Code Execution Vulnerability
CVE-2020-1564
Jet Database Engine Remote Code Execution Vulnerability
CVE-2020-1483
Microsoft Outlook Memory Corruption Vulnerability
CVE-2020-1504
Microsoft Excel Remote Code Execution Vulnerability
CVE-2020-1503
Microsoft Word Information Disclosure Vulnerability
CVE-2020-1495
Microsoft Excel Remote Code Execution Vulnerability
CVE-2020-1494
Microsoft Excel Remote Code Execution Vulnerability
CVE-2020-1493
Microsoft Outlook Information Disclosure Vulnerability
CVE-2020-1496
Microsoft Excel Remote Code Execution Vulnerability
CVE-2020-1502
Microsoft Word Information Disclosure Vulnerability
CVE-2020-1498
Microsoft Excel Remote Code Execution Vulnerability
CVE-2020-1497
Microsoft Excel Information Disclosure Vulnerability
CVE-2020-1581
Microsoft Office Click-to-Run Elevation of Privilege Vulnerability
CVE-2020-1563
Microsoft Office Remote Code Execution Vulnerability
CVE-2020-1582
Microsoft Access Remote Code Execution Vulnerability
CVE-2020-1583
Microsoft Word Information Disclosure Vulnerability
CVE-2020-1505
Microsoft SharePoint Information Disclosure Vulnerability
CVE-2020-1573
Microsoft Office SharePoint XSS Vulnerability
CVE-2020-1499
Microsoft SharePoint Spoofing Vulnerability
CVE-2020-1500
Microsoft SharePoint Spoofing Vulnerability
CVE-2020-1580
Microsoft Office SharePoint XSS Vulnerability
CVE-2020-1501
Microsoft SharePoint Spoofing Vulnerability
CVE-2020-1570
Scripting Engine Memory Corruption Vulnerability
CVE-2020-1555
Scripting Engine Memory Corruption Vulnerability
CVE-2020-1380
Scripting Engine Memory Corruption Vulnerability
CVE-2020-1492
Media Foundation Memory Corruption Vulnerability
CVE-2020-1485
Windows Image Acquisition Service Information Disclosure Vulnerability
CVE-2020-1587
Windows Ancillary Function Driver for WinSock Elevation of Privilege Vulnerability
CVE-2020-1551
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1484
Windows Work Folders Service Elevation of Privilege Vulnerability
CVE-2020-1489
Windows CSC Service Elevation of Privilege Vulnerability
CVE-2020-1584
Windows dnsrslvr.dll Elevation of Privilege Vulnerability
CVE-2020-1486
Windows Kernel Elevation of Privilege Vulnerability
CVE-2020-1488
Windows AppX Deployment Extensions Elevation of Privilege Vulnerability
CVE-2020-1490
Windows Storage Service Elevation of Privilege Vulnerability
CVE-2020-1515
Windows Telephony Server Elevation of Privilege Vulnerability
CVE-2020-1513
Windows CSC Service Elevation of Privilege Vulnerability
CVE-2020-1553
Windows Runtime Elevation of Privilege Vulnerability
CVE-2020-1552
Windows Work Folder Service Elevation of Privilege Vulnerability
CVE-2020-1566
Windows Kernel Elevation of Privilege Vulnerability
CVE-2020-1579
Windows Function Discovery SSDP Provider Elevation of Privilege Vulnerability
CVE-2020-1512
Windows State Repository Service Information Disclosure Vulnerability
CVE-2020-1511
Connected User Experiences and Telemetry Service Elevation of Privilege Vulnerability
CVE-2020-1480
Windows GDI Elevation of Privilege Vulnerability
CVE-2020-1542
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1543
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1540
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1541
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1544
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1547
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1519
Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2020-1545
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1546
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1539
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1528
Windows Radio Manager API Elevation of Privilege Vulnerability
CVE-2020-1530
Windows Remote Access Elevation of Privilege Vulnerability
CVE-2020-1526
Windows Network Connection Broker Elevation of Privilege Vulnerability
CVE-2020-1527
Windows Custom Protocol Engine Elevation of Privilege Vulnerability
CVE-2020-1534
Windows Backup Service Elevation of Privilege Vulnerability
CVE-2020-1537
Windows Remote Access Elevation of Privilege Vulnerability
CVE-2020-1520
Windows Font Driver Host Remote Code Execution Vulnerability
CVE-2020-1535
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1536
Windows Backup Engine Elevation of Privilege Vulnerability
CVE-2020-1470
Windows Work Folders Service Elevation of Privilege Vulnerability
CVE-2020-1509
Local Security Authority Subsystem Service Elevation of Privilege Vulnerability
CVE-2020-1459
Windows ARM Information Disclosure Vulnerability
CVE-2020-1538
Windows UPnP Device Host Elevation of Privilege Vulnerability
CVE-2020-1475
Windows Server Resource Management Service Elevation of Privilege Vulnerability
CVE-2020-1464
Windows Spoofing Vulnerability
CVE-2020-1467
Windows Hard Link Elevation of Privilege Vulnerability
CVE-2020-1550
Windows CDP User Components Elevation of Privilege Vulnerability
CVE-2020-1517
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
CVE-2020-1518
Windows File Server Resource Management Service Elevation of Privilege Vulnerability
CVE-2020-1516
Windows Work Folders Service Elevation of Privilege Vulnerability
CVE-2020-1549
Windows CDP User Components Elevation of Privilege Vulnerability
CVE-2020-1383
Windows RRAS Service Information Disclosure Vulnerability
CVE-2020-1574
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
CVE-2020-1560
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
CVE-2020-1585
Microsoft Windows Codecs Library Remote Code Execution Vulnerability
CVE-2020-1472
Netlogon Elevation of Privilege Vulnerability
CVE-2020-1455
Microsoft SQL Server Management Studio Denial of Service Vulnerability
CVE-2020-0604
Visual Studio Code Remote Code Execution Vulnerability
CVE-2020-1521
Windows Speech Runtime Elevation of Privilege Vulnerability
CVE-2020-1522
Windows Speech Runtime Elevation of Privilege Vulnerability
CVE-2020-1524
Windows Speech Shell Components Elevation of Privilege Vulnerability
CVE-2020-1474
Windows Image Acquisition Service Information Disclosure Vulnerability
CVE-2020-1578
Windows Kernel Information Disclosure Vulnerability
CVE-2020-1417
Windows Kernel Elevation of Privilege Vulnerability
CVE-2020-1479
DirectX Elevation of Privilege Vulnerability
CVE-2020-1379
Media Foundation Memory Corruption Vulnerability
CVE-2020-1554
Media Foundation Memory Corruption Vulnerability
CVE-2020-1339
Windows Media Remote Code Execution Vulnerability
CVE-2020-1525
Media Foundation Memory Corruption Vulnerability
CVE-2020-1487
Media Foundation Information Disclosure Vulnerability
CVE-2020-1478
Media Foundation Memory Corruption Vulnerability
CVE-2020-1477
Media Foundation Memory Corruption Vulnerability
CVE-2020-1337
Windows Print Spooler Elevation of Privilege Vulnerability
CVE-2020-1466
Windows Remote Desktop Gateway (RD Gateway) Denial of Service Vulnerability
CVE-2020-1377
Windows Registry Elevation of Privilege Vulnerability
CVE-2020-1378
Windows Registry Elevation of Privilege Vulnerability
CVE-2020-1565
Windows Elevation of Privilege Vulnerability
CVE-2020-1531
Windows Accounts Control Elevation of Privilege Vulnerability
CVE-2020-1571
Windows Setup Elevation of Privilege Vulnerability
CVE-2020-1548
Windows WaasMedic Service Information Disclosure Vulnerability
CVE-2020-1556
Windows WalletService Elevation of Privilege Vulnerability
CVE-2020-1533
Windows WalletService Elevation of Privilege Vulnerability
我们强烈建议使用Windows操作系统的用户立刻检查一下您的系统是否受此漏洞影
响,漏洞详情敬请参见:
英文:https://portal.msrc.microsoft.com/en-us/security-guidance
中文:https://portal.msrc.microsoft.com/zh-cn/security-guidance
