綠盟科技釋出了本周安全通告,周報編号nsfocus-17-09,綠盟科技漏洞庫本周新增41條,其中高危16條。本次周報建議大家關注microsoft internet explorer/edge任意代碼執行漏洞 cve-2017-0037 。攻擊者通過精心構造的網頁可以達到遠端代碼執行的目的。目前尚無任何更新檔,建議大家暫時停用ie和edge。
microsoft internet explorer/edge任意代碼執行漏洞
nsfocus id 35978
cve id cve-2017-0037
受影響版本
microsoft internet explorer 11
microsoft edge
漏洞點評
microsoft internet explorer 11/microsoft edge在實作上存在類型混淆漏洞,此漏洞位于mshtml.dll内的layout::multicolumnboxbuilder::handlecolumnbreakoncolumnspanningelement函數中。攻擊者通過精心構造的網頁可以達到遠端代碼執行的目的。目前尚無任何更新檔,建議大家暫時停用ie和edge。
(資料來源:綠盟科技安全研究部&産品規則組)
最近一周cve公告總數與前期相比有所下降。值得關注的高危漏洞如下:
<a href="http://toutiao.secjia.com/cloudflare-leaking-sensitive-information">cloudflare敏感資料洩露事件 程式員出面解釋 但google研究員并不滿意</a>
連結:http://securityaffairs.co/wordpress/56617/data-breach/cloudbleed-cloudflare-flaw.html
簡述:cloudflare was leaking a wide range of sensitive information, including authentication cookies and login credentials, the flaw was dubbed cloudbleed.
cve-2017-0037 – google project zero discloses another unpatched microsoft edge and ie vulnerability
連結:http://securityaffairs.co/wordpress/56716/hacking/cve-2017-0037-microsoft-flaw.html
簡述:the researchers at google’s project zero have revealed another flaw, tracked as cve-2017-0037, that affects microsoft edge and ie.
<a href="http://toutiao.secjia.com/necurs-botnets-are-constantly-unity">垃圾郵件、勒索軟體、ddos攻擊三合一 necurs僵屍網絡正在不斷聯合壯大自己</a>
連結:http://securityaffairs.co/wordpress/56725/malware/necurs-botnet-ddos.html
簡述:the necurs botnet is evolving and recently the experts at bitsight’s anubis labs discovered that it was improved to launch ddos attacks.
amazon web services suffer massive outage taking popular sites down
簡述:if you were surfing the internet about 3 hours ago and couldn’t reach some of your favorite websites, then don’t worry since you were not the only one facing the issue. in fact, users worldwide were unable to reach runkeeper, medium, trello, imgur, giphy, soundcloud, quora, business insider, coursera, and time inc and many other websites.
連結:https://www.hackread.com/amazon-cloud-service-suffers-massive-outage/
unpatched smb zero day easily exploitable
簡述:in what’s turning out to be the zero day that keeps on giving, researchers are still finding ways to exploit an unpatched denial of service vulnerability that exists in the way windows implements the server message block protocol.
連結:https://threatpost.com/unpatched-smb-zero-day-easily-exploitable/123963/
critical flaw in eset antivirus exposes mac users to remote hacking
簡述:what could be more exciting for hackers than exploiting a vulnerability in a widely used software without having to struggle too much?
連結:http://thehackernews.com/2017/02/eset-antivirus-mac.html?utm_source=feedburner&utm_medium=feed&utm_campaign=feed%3a+thehackersnews+%28the+hackers+news+-+security+blog%29
<a href="http://toutiao.secjia.com/dridex-banking-trojans-use-memory-injection-method-atombombing">atombombing記憶體注入技術有應用了 dridex銀行木馬用它成功繞開了防病毒軟體 攻擊英國銀行</a>
簡介:security researchers have discovered a new variant of dridex – one of the most nefarious banking trojans actively targeting financial sector – with a new, sophisticated code injection technique and evasive capabilities called “atombombing.”
連結:http://thehackernews.com/2017/03/dridex-atombombing-malware.html?utm_source=feedburner&utm_medium=feed&utm_campaign=feed%3a+thehackersnews+%28the+hackers+news+-+security+blog%29
million-plus wordpress sites exposed by vulnerable plugin
簡介:a popular wordpress gallery plugin with more than one million active installations was recently patched to address a vulnerability exposing website databases to attack.the nextgen gallery is a photo gallery management system used by professional photographers and artists upload, sort and group galleries. it’s been downloaded more than 16 million times since it was developed in 2007.
連結:https://threatpost.com/million-plus-wordpress-sites-exposed-by-vulnerable-plugin/123983/
<a href="http://toutiao.secjia.com/zscaler-cloud-cross-site-attacks">意義重大 雲安全公司zscaler雲管理軟體出現跨站攻擊漏洞 得手後或者僞裝詐騙或者ddos都可以啊</a>
簡介:zscaler has fixed persistent xss vulnerabilities affecting zscaler cloud management software that allow logged attackers to hack coworkers.
連結:http://securityaffairs.co/wordpress/56776/hacking/zscaler-cloud-management-software-flaws.html
yahoo reveals 32 million accounts were hacked using ‘cookie forging attack’
簡述:yahoo has just revealed that around 32 million user accounts were accessed by hackers in the last two years using a sophisticated cookie forging attack without any password.
連結:http://thehackernews.com/2017/03/yahoo-cookie-forging-hack.html?utm_source=feedburner&utm_medium=feed&utm_campaign=feed%3a+thehackersnews+%28the+hackers+news+-+security+blog%29
how a simple command typo took down amazon s3 and big chunk of the internet
簡述:amazon on thursday admitted that an incorrectly typed command during a routine debugging of the company’s billing system caused the 5-hour-long outage of some amazon web services (aws) servers on tuesday.
連結:http://thehackernews.com/2017/03/amazon-web-storage.html
(資料來源:綠盟科技 威脅情報與網絡安全實驗室 收集整理)
截止到2017年3月3日,綠盟科技漏洞庫已收錄總條目達到36017條。本周新增漏洞記錄41條,其中高危漏洞數量16條,中危漏洞數量19條,低危漏洞數量6條。
linux kernel本地拒絕服務漏洞(cve-2017-6074)
危險等級:高
bid:96310
cve編号:cve-2017-6074
microsoft internet explorer/edge任意代碼執行漏洞(cve-2017-0037)
cve編号:cve-2017-0037
qemu ‘virtio_gpu_cmd_set_scanout()’拒絕服務漏洞(cve-2016-10029)
bid:94978
cve編号:cve-2016-10029
qemu ‘virtio-gpu-3d.c’拒絕服務漏洞(cve-2016-10028)
bid:94981
cve編号:cve-2016-10028
tnef src/mapi_attr.c:mapi_attr_read()安全漏洞(cve-2017-6307)
cve編号:cve-2017-6307
linux kernel do_shmat函數安全限制繞過漏洞(cve-2017-5669)
cve編号:cve-2017-5669
tnef file_add_mapi_attrs()函數類型混淆漏洞(cve-2017-6310)
cve編号:cve-2017-6310
tnef parse_file()函數類型混淆漏洞(cve-2017-6309)
cve編号:cve-2017-6309
tnef 整數溢出漏洞(cve-2017-6308)
cve編号:cve-2017-6308
imagemagick readvicarimage函數遠端拒絕服務漏洞(cve-2015-8903)
危險等級:低
cve編号:cve-2015-8903
imagemagick readblobbyte函數遠端拒絕服務漏洞(cve-2015-8902)
cve編号:cve-2015-8902
imagemagick readhdrimage遠端拒絕服務漏洞(cve-2015-8900)
cve編号:cve-2015-8900
imagemagick 遠端拒絕服務漏洞(cve-2015-8901)
cve編号:cve-2015-8901
apple macos/watchos/ios遠端欺騙漏洞(cve-2016-7662)
bid:94905
cve編号:cve-2016-7662
apple macos/ios遠端權限提升漏洞(cve-2016-7661)
bid:94906
cve編号:cve-2016-7661
apple macos/watchos/ios/tvos遠端權限提升漏洞(cve-2016-7660)
cve編号:cve-2016-7660
apple macos/watchos/ios/tvos遠端拒絕服務漏洞(cve-2016-7658)
cve編号:cve-2016-7658
apple macos/watchos/ios/tvos遠端拒絕服務漏洞(cve-2016-7659)
cve編号:cve-2016-7659
apple macos/watchos/ios/tvos遠端拒絕服務漏洞(cve-2016-7663)
cve編号:cve-2016-7663
apple ios資訊洩露漏洞(cve-2016-7664)
bid:94850
cve編号:cve-2016-7664
apple macos/watchos/ios/tvos遠端資訊洩露漏洞(cve-2016-7714)
cve編号:cve-2016-7714
apple ios拒絕服務漏洞(cve-2016-7665)
危險等級:中
cve編号:cve-2016-7665
apple transporter資訊洩露漏洞(cve-2016-7666)
bid:94912
cve編号:cve-2016-7666
apple macos/watchos/ios/tvos遠端拒絕服務漏洞(cve-2016-7667)
cve編号:cve-2016-7667
linux kernel ip_cmsg_recv_checksum拒絕服務漏洞(cve-2017-6347)
cve編号:cve-2017-6347
linux kernel net/sctp/socket.c拒絕服務漏洞(cve-2017-6353)
cve編号:cve-2017-6353
linux kernel hashbin_delete拒絕服務漏洞(cve-2017-6348)
cve編号:cve-2017-6348
linux kernel llc子系統拒絕服務漏洞(cve-2017-6345)
cve編号:cve-2017-6345
linux kernel net/packet/af_packet.c拒絕服務漏洞(cve-2017-6346)
cve編号:cve-2017-6346
gnu c library iconv拒絕服務漏洞(cve-2016-10228)
cve編号:cve-2016-10228
imagemagick 安全限制繞過漏洞(cve-2016-10060)
bid:95208
cve編号:cve-2016-10060
imagemagick 拒絕服務漏洞(cve-2016-10063)
bid:95210
cve編号:cve-2016-10063
imagemagick 安全限制繞過漏洞(cve-2016-10062)
bid:95209
cve編号:cve-2016-10062
imagemagick 拒絕服務漏洞(cve-2016-10071)
bid:95222
cve編号:cve-2016-10071
imagemagick 安全限制繞過漏洞(cve-2016-10069)
bid:95216
cve編号:cve-2016-10069
imagemagick 拒絕服務漏洞(cve-2016-10068)
bid:95219
cve編号:cve-2016-10068
imagemagick 拒絕服務漏洞(cve-2016-10067)
bid:95220
cve編号:cve-2016-10067
imagemagick 拒絕服務漏洞(cve-2016-10064)
bid:95211
cve編号:cve-2016-10064
wordpress mobile app native插件遠端檔案上傳漏洞(cve-2017-6104)
cve編号:cve-2017-6104
wordpress anyvar 跨站腳本攻擊漏洞(cve-2017-6103)
cve編号:cve-2017-6103
wordpress rockhoist-badges跨站腳本攻擊漏洞(cve-2017-6102)
cve編号:cve-2017-6102
原文釋出時間:2017年3月24日
本文由:綠盟科技釋出,版權歸屬于原作者
原文連結:http://toutiao.secjia.com/nsfocus-internet-security-threats-weekly-201709
本文來自雲栖社群合作夥伴安全加,了解相關資訊可以關注安全加網站