安全通報資訊
※安全通報資訊
安全通報類型
微軟安全通報
發佈日期
2018-04-12
標題
微軟發佈04月份安全性公告,建議請儘速更新!
CVE
BID
影響平台
Microsoft Edge and Internet Explorer: ● Microsoft Edge installed on Windows (all editions) ● Internet Explorer 9, Internet Explorer 10, and Internet Explorer 11 installed on Windows (all editions) Microsoft Office: ● Excel Services ● Microsoft Excel 2007 Service Pack 3 ● Microsoft Excel 2010 Service Pack 2 (32-bit editions) ● Microsoft Excel 2010 Service Pack 2 (64-bit editions) ● Microsoft Excel 2013 RT Service Pack 1 ● Microsoft Excel 2013 Service Pack 1 (32-bit editions) ● Microsoft Excel 2013 Service Pack 1 (64-bit editions) ● Microsoft Excel 2016 (32-bit edition) ● Microsoft Excel 2016 (64-bit edition) ● Microsoft Excel Viewer 2007 Service Pack 3 ● Microsoft Office 2010 Service Pack 2 (32-bit editions) ● Microsoft Office 2010 Service Pack 2 (64-bit editions) ● Microsoft Office 2013 RT Service Pack 1 ● Microsoft Office 2013 Service Pack 1 (32-bit editions) ● Microsoft Office 2013 Service Pack 1 (64-bit editions) ● Microsoft Office 2016 (32-bit edition) ● Microsoft Office 2016 (64-bit edition) ● Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions ● Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions ● Microsoft Office Compatibility Pack Service Pack 3 ● Microsoft Office Web Apps 2010 Service Pack 2 ● Microsoft Office Web Apps Server 2013 Service Pack 1 ● Microsoft SharePoint Enterprise Server 2013 Service Pack 1 ● Microsoft SharePoint Enterprise Server 2016 ● Microsoft SharePoint Server 2010 Service Pack 2 ● Microsoft SharePoint Server 2013 Service Pack 1 ● Microsoft Word 2007 Service Pack 3 ● Microsoft Word 2010 Service Pack 2 (32-bit editions) ● Microsoft Word 2010 Service Pack 2 (64-bit editions) ● Microsoft Word 2013 RT Service Pack 1 ● Microsoft Word 2013 Service Pack 1 (32-bit editions) ● Microsoft Word 2013 Service Pack 1 (64-bit editions) ● Microsoft Word 2016 (32-bit edition) ● Microsoft Word 2016 (64-bit edition) ● Word Automation Services Microsoft Windows: ● Windows 7 for 32-bit Systems Service Pack 1 ● Windows 7 for x64-based Systems Service Pack 1 ● Windows 8.1 for 32-bit systems ● Windows 8.1 for x64-based systems ● Windows RT 8.1 ● Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1 ● Windows Server 2008 R2 for x64-based Systems Service Pack 1 ● Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) ● Windows Server 2012 ● Windows Server 2012 (Server Core installation) ● Windows Server 2012 R2 ● Windows Server 2012 R2 (Server Core installation) ● Adobe Flash Player ● Windows 10 for 32-bit Systems ● Windows 10 for x64-based Systems ● Windows 10 Version 1511 for 32-bit Systems ● Windows 10 Version 1511 for x64-based Systems ● Windows 10 Version 1607 for 32-bit Systems ● Windows 10 Version 1607 for x64-based Systems ● Windows 10 Version 1703 for 32-bit Systems ● Windows 10 Version 1703 for x64-based Systems ● Windows 10 Version 1709 for 32-bit Systems ● Windows 10 Version 1709 for x64-based Systems ● Windows Server 2008 for 32-bit Systems Service Pack 2 ● Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) ● Windows Server 2008 for Itanium-Based Systems Service Pack 2 ● Windows Server 2008 for x64-based Systems Service Pack 2 ● Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) ● Windows Server 2016 ● Windows Server 2016 (Server Core installation) ● Windows Server, version 1709 (Server Core Installation) ● Microsoft Visual Studio(all editions) ● Visual Studio 2017 - Dev15 RTW ● Visual Studio 2017 - Dev15 version 15.6.6 ● Visual Studio 2017 - Dev15 version 15.7 Preview 4 ● Microsoft Wireless Keyboard 850
說明
Microsoft 發佈04月份安全性公告,Microsoft 軟體存在弱點,遠端攻擊者可利用弱點控制受影響的系統。 目前已知多個軟體版本受到影響,HiNet SOC 建議請管理者/使用者儘速更新,以降低受駭風險。
解決方式
詳細資訊請參考微軟官方網站
相關資訊連結
http://gsn-cert.nat.gov.tw/05-02-01-detail.php?cat=vul&chtip=HiNet-2018-0040
相關修正資訊連結