漏洞新聞

微軟釋出十月份安全性更新

內容說明：

微軟釋出產品十月份安全性更新，修補遠端執行任意程式碼等漏洞。

影響平台：

.NET Core & Visual Studio
Active Directory Federation Services
Console Window Host
HTTP.sys
Microsoft DWM Core Library
Microsoft Dynamics
Microsoft Edge (Chromium-based)
Microsoft Exchange Server
Microsoft Graphics Component
Microsoft Intune
Microsoft Office Excel
Microsoft Office SharePoint
Microsoft Office Visio
Microsoft Office Word
Microsoft Windows Codecs Library
Rich Text Edit Control
Role: DNS Server
Role: Windows Active Directory Server
Role: Windows AD FS Server
Role: Windows Hyper-V
System Center
Visual Studio
Windows AppContainer
Windows AppX Deployment Service
Windows Bind Filter Driver
Windows Cloud Files Mini Filter Driver
Windows Common Log File System Driver
Windows Desktop Bridge
Windows DirectX
Windows Event Tracing
Windows exFAT File System
Windows Fastfat Driver
Windows Installer
Windows Kernel
Windows MSHTML Platform
Windows Nearby Sharing
Windows Network Address Translation (NAT)
Windows Print Spooler Components
Windows Remote Procedure Call Runtime
Windows Storage Spaces Controller
Windows TCP/IP
Windows Text Shaping
Windows Win32K

處置建議：

目前微軟官方已針對弱點釋出修復版本，請各機關可聯絡系統維護廠商或參考以下連結：
https://msrc.microsoft.com/update-guide/releaseNote/2021-Oct

CVE編號：

CVE-2020-1971
CVE-2021-26427
CVE-2021-26441
CVE-2021-3449
CVE-2021-3450
CVE-2021-37974
CVE-2021-37975
CVE-2021-37976
CVE-2021-38662
CVE-2021-38663
CVE-2021-38672
CVE-2021-40454
CVE-2021-40456
CVE-2021-40457
CVE-2021-40460
CVE-2021-40468
CVE-2021-40469
CVE-2021-40471
CVE-2021-40472
CVE-2021-40473
CVE-2021-40474
CVE-2021-40475
CVE-2021-40479
CVE-2021-40480
CVE-2021-40481
CVE-2021-40482
CVE-2021-40485
CVE-2021-40486
CVE-2021-40487
CVE-2021-40489
CVE-2021-41332
CVE-2021-41336
CVE-2021-41337
CVE-2021-41342
CVE-2021-41343
CVE-2021-41352
CVE-2021-41355
CVE-2021-41361
CVE-2021-41363

參考資料：

1. https://msrc.microsoft.com/update-guide/releaseNote/2021-Oct

2021/10/13 上午 11:16:32

:::

地址：100057 臺北市中正區延平南路143號
電話：(02)2739-1000 傳真：(02)2733-1655