IMicrosoft ivale inani elikhulu lobuthathaka kwizisombululo zayo ngexesha lePatch ngoLwesibili. Ezi ziquka ubuthathaka obubalulekileyo be-CVE-2021-43890 enokuthi isetyenziswe ukuhlaselwa kwe-Emotet / Trickbot / Bazaloader. Enye i-exploit ye-Exchange iye yafunyanwa.
Kuhlaziyo lwayo lukaDisemba Patch ngoLwesibili, iMicrosoft iphinde yalungisa inani elikhulu lobuthathaka kwisoftware yayo. Ngesi sihlandlo yayibandakanya iipatches ezingekho ngaphantsi kwama-67. NgoNovemba, bekukho i-55. Iyonke, i-tech giant ikhuphe i-887 CVE patches kulo nyaka.
Umjikelo kaDisemba wagubungela ubuthathaka kwiOfisi kaMicrosoft, iMicrosoft PowerShell, iChromium-based Edge browser, Windows Kernel, i Windows Shicilela Spooler kunye ne Windows Umxhasi weDesktop ekude. Kuma-patches angama-67 akhutshiweyo ngoku, amathandathu ibiziro-day exploit.
Imiba esonjululwe ibandakanya ukuSebenziswa kweKhowudi ekude (RCE), iziphene zokhuseleko zokunyusa amalungelo, iziphene, kunye nemiba yenkonzo.
Amabala amathandathu eentsuku zero
Esona siqwenga sibalulekileyo sibandakanya ukuba sesichengeni kwe-CVE-2021-43890 yosuku lwe-zero. Oku yi Windows Ukuba semngciphekweni kwe-AppX Installer Spoofing enikwe umlinganiselo obaluleke kakhulu kwaye esele ixhatshazwa ngabahlaseli. Ubuthathaka buboleka, phakathi kwezinye izinto, ukusetyenziswa kweepakethe eziphuhliswe ngokukodwa. Ngokukodwa, abahlaseli bazama ukusasaza i-Emotet, iTrickbot kunye ne-Bazaloader malware ngoku kuxhaphaza.
Eminye imingxunya yosuku lwe-zero kwisoftware kaMicrosoft evaliweyo ngoku iquka a Windows Shicilela iSpooler Elevation of Privage vulnerability (CVE-2021-413330), a Windows Ukuba sesichengeni koLawulo lweSixhobo esiXelwayo (EoP) sesichengeni (CVE-2021-43880) kunye ne-EoP kwi Windows INkqubo yeFayile yokuFihla (CVE-2021-43893).
Ukongeza, ubuthathaka beentsuku zero bulungiselwe "NTFS Seta igama elifutshane lonyuso lwelungelo" software bug (CVE-2021-43240) kunye nomcimbi wosuku lwe-zero Windows Umfaki (CVE-2021-43883).
New kunokwenzeka uhlaselo Exchange
Isigebenga sobuchwephesha siphinde sabhengeza ukuba sifumanise ukuba isiphene se-Exchange Server post-athentication isiphene (CVE-2021-42321) sisetyenziselwa uhlaselo olutsha. Emva kweengxaki ezavela ekuqaleni kwalo nyaka, Utshintshiselwano luya kufuneka kwakhona ukujongana neenzame zokuhlasela.