Ï£À°¶¥¼¶ÓòÃû×¢²áÉÌICS-ForthÔâºÚ¿Í¹¥»÷£»£»£»£»£»¸æ°×Èí¼þAgent SmithϰȾԼ2500Íǫ̀AndroidÉ豸

°ä²¼¹¦·ò 2019-07-11
1¡¢Î¢Èí°ä²¼Windows7Ô°²È«¸üУ¬£¬£¬£¬£¬½¨¸´77¸ö·ì϶

8827Ì«Ñô¼¯ÍÅ(Macau)¹É·ÝÓÐÏÞ¹«Ë¾-Official website
 
΢ÈíÔÚWindows7Ô°²È«¸üÐÂÖн¨¸´ÁË77¸ö·ì϶£¬£¬£¬£¬£¬ÆäÖÐÔ̺¬15¸öÑϳÁ·ì϶¡£¡£¡£¡£ ¡£Î¢Èí½¨¸´ÁËÁ½¸öÌáȨ0day£¬£¬£¬£¬£¬µÚÒ»¸öÊÇWin32kÌáȨ·ì϶£¨CVE-2019-1132£©£¬£¬£¬£¬£¬¸Ã·ì϶ÓÉESET×êÑÐÈËÔ±Anton Cherepanov·¢ÏÖ£¬£¬£¬£¬£¬ÔÊÐí¹¥»÷ÕßÒÔÄÚºËģʽÔËÐÐËÁÒâ´úÂë¡£¡£¡£¡£ ¡£µÚ¶þ¸öÊÇMicrosoft splwow64ÌáȨ·ì϶£¨CVE-2019-0880£©£¬£¬£¬£¬£¬¸Ã·ì϶ÓÉReSecurity×êÑÐÈËÔ±Gene Yoo·¢ÏÖ¡£¡£¡£¡£ ¡£´Ë±í£¬£¬£¬£¬£¬Î¢Èí»¹½¨¸´ÁË5¸öÒѱ»¹«¿ªÅû¶µÄ·ì϶£¬£¬£¬£¬£¬µ«Î¢Èí°µÊ¾ÕâЩ·ì϶¶¼Ã»ÓÐÔÚÒ°±í±»ÀûÓᣡ£¡£¡£ ¡£Î¢Èí»¹½¨¸´ÁËSandboxEscaperÅû¶µÄÌáȨ·ì϶£¨CVE-2019-1130£©¡£¡£¡£¡£ ¡£ÆëÈ«½¨¸´ÁбíÇë²Î¿¼ÒÔÏÂÁ´½Ó¡£¡£¡£¡£ ¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/microsoft/microsofts-july-2019-patch-tuesday-fixes-2-zero-day-vulnerabilities/

2¡¢Ó¢Ìضû½¨¸´ÆóÒµ¼¶SSD¼°CPUÕï¶Ï¹¤¾ßÖеÄÌáȨ·ì϶

8827Ì«Ñô¼¯ÍÅ(Macau)¹É·ÝÓÐÏÞ¹«Ë¾-Official website
 
Ó¢ÌØ¶û½¨¸´ÆóÒµ¼¶SSDÖеÄÌáȨ·ì϶£¨CVE-2018-18095£©£¬£¬£¬£¬£¬¸Ã·ì϶ӰÏìÁËSSD DC S4500ϵÁкÍSSD DC S4600ϵÁУ¬£¬£¬£¬£¬ÊÜÓ°ÏìµÄ¹Ì¼þ°æ±¾ÊÇSCV10150֮ǰµÄ°æ±¾¡£¡£¡£¡£ ¡£¸Ã·ì϶ÊÇÓɲ»ÕýÈ·µÄÉí·ÝÑéÖ¤ÒýÆðµÄ£¬£¬£¬£¬£¬¿Éͨ¹ýÎïÀí½Ó¼ûÀ´ÀûÓ㬣¬£¬£¬£¬ÆäCVSSÆÀ·ÖΪ5.3¡£¡£¡£¡£ ¡£´Ë±í£¬£¬£¬£¬£¬Ó¢Ìضû»¹½¨¸´CPUÕï¶Ï¹¤¾ßÖеÄÑϳÁ·ì϶£¨CVE-2019-11133£©£¬£¬£¬£¬£¬¸Ã·ì϶¿ÉÔÊÐí¹¥»÷Õß½øÐÐÌáȨ¡¢´¥·¢»Ø¾ø·þÎñ»ò»ñÊØÐÅÏ¢¡£¡£¡£¡£ ¡£¸Ã·ì϶µÄCVSSÆÀ·ÖÊÇ8.2·Ö£¬£¬£¬£¬£¬Ó°ÏìÁË4.1.2.24֮ǰµÄ°æ±¾¡£¡£¡£¡£ ¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/intel-fixes-priv-escalation-vulnerability-in-enterprise-ssd/

3¡¢ÂÞ¼¼Unifying USB½Ó¹ÜÆ÷4¸ö·ì϶£¬£¬£¬£¬£¬¿Éµ¼Ö»÷¼ü×¢Èë¹¥»÷

8827Ì«Ñô¼¯ÍÅ(Macau)¹É·ÝÓÐÏÞ¹«Ë¾-Official website
 
°²È«×êÑÐÔ±Marcus Mengs·¢ÏÖÂÞ¼¼Unifying USB½Ó¹ÜÆ÷´æÔÚ4¸ö°²È«·ì϶£¬£¬£¬£¬£¬ÕâЩ·ì϶ÊÇÓÉÂÞ¼¼¼ÓÃܹ·µÄ¹ýÆÚ¹Ì¼þÔì³ÉµÄ£¬£¬£¬£¬£¬ÓµÓÐÎïÀí½Ó¼ûȨÏ޵Ĺ¥»÷Õß¿ÉÀûÓÃÕâЩ·ì϶ÌáÒé»÷¼ü×¢Èë¹¥»÷¡¢¼üÅ̼ͼÒÔ¼°½ÚÔìÖ¸±êϵͳ¡£¡£¡£¡£ ¡£Ä¿Ç°£¬£¬£¬£¬£¬ÕâËĸö·ì϶¾ùÒÑÉϱ¨¸øÂÞ¼¼¹«Ë¾£¬£¬£¬£¬£¬µ«ÂÞ¼¼È·ÈÏËûÃÇÖ»»á½¨¸´ÆäÖеÄÁ½¸ö·ì϶£ºCVE-2019-13054ºÍCVE-2019-13055½«ÔÚ2019Äê8Ô°䲼µÄ¸üÐÂÖн¨¸´£¬£¬£¬£¬£¬CVE-2019013052ºÍCVE-2019-13053½«²»»á½¨¸´¡£¡£¡£¡£ ¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/logitech-unifying-receivers-vulnerable-to-key-injection-attacks/

4¡¢GEÂé×í»úÉí·ÝÑéÖ¤·ì϶£¬£¬£¬£¬£¬Ò×ÔâÔ¶³Ì´Û¸Ä

8827Ì«Ñô¼¯ÍÅ(Macau)¹É·ÝÓÐÏÞ¹«Ë¾-Official website
 
CyberMDX×êÑÐÈËÔ±Elad Luz·¢ÏÖGEÒ½ÁƵÄÁ½¿îÂé×í»ú´æÔÚ°²È«·ì϶£¬£¬£¬£¬£¬¿ÉÄÜ»áÔâµ½¶ñÒâ´Û¸Ä¡£¡£¡£¡£ ¡£GEÒ½ÁÆÊôÓÚͨÓÃµçÆø¹«Ë¾£¬£¬£¬£¬£¬Æ¾¾Ý×êÑÐÈËÔ±µÄ˵·¨£¬£¬£¬£¬£¬¹¥»÷Õß¿ÉÄÜ»áÆÈʹÒ×Êܹ¥»÷µÄÉ豸ʹÓÃÆäʹÓõݲȫºÍ̸°æ±¾¡£¡£¡£¡£ ¡£ÕâÖÖ½µ¼¶¹¥»÷²»½öÄܹ»Ô¶³Ìµ÷½ÚÂé×íÆøÌå»ìºÏÎïµÄ³É·Ö£¬£¬£¬£¬£¬»¹Äܹ»ÒÖÔ쾯±¨¡¢Å¤×ªÏµÍ³µÄ¹¦·òºÍÈÕÆÚ¡¢ÒÔ¼°Å¤×ªÆøÑ¹¡£¡£¡£¡£ ¡£ÃÀ¹úºÓɽ°²È«ÊýÔÚÖܶþ°ä²¼µÄÒ»·Ý»ã±¨ÖгÆÕâЩ·ì϶ÊôÓÚ²»ÕýÈ·µÄÉí·ÝÑéÖ¤·ì϶£¬£¬£¬£¬£¬²¢ÇÒÖ»±ØÒªµÍˮƽµÄ¼¼Êõ¾ÍÄÜÔâµ½ÀûÓᣡ£¡£¡£ ¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/bug-in-anesthesia-machines-allows-changing-gas-mix-levels/

5¡¢Ï£À°¶¥¼¶ÓòÃû×¢²áÉÌICS-ForthÔâºÚ¿Í¹¥»÷£¬£¬£¬£¬£¬DNS¼Í¼±»´Û¸Ä

8827Ì«Ñô¼¯ÍÅ(Macau)¹É·ÝÓÐÏÞ¹«Ë¾-Official website
 
Ï£À°¶¥¼¶ÓòÃû×¢²áÉÌICS-ForthÔâºÚ¿Í¹¥»÷¡£¡£¡£¡£ ¡£ICS-ForthÕÆ¹ÜÖÎÀíÏ£À°µÄ¶¥¼¶ÓòÃû.grºÍ.el£¬£¬£¬£¬£¬¸Ã×é֯ȷÈÏÔâµ½ºÚ¿ÍÈëÇÖ¡£¡£¡£¡£ ¡£¹¥»÷ÕßÓë˼¿ÆTalos4Ô·ݵĻ㱨ÖÐÃèÊöµÄ×éÖ¯Ò»Ñù£¬£¬£¬£¬£¬¼´·¸×ïÍÅ»ïSea Turtle¡£¡£¡£¡£ ¡£¸Ã×é֯ʹÓÃÒ»ÖÖÏà¶Ô½ÏеIJ½Öè¹¥»÷Ö¸±ê£¬£¬£¬£¬£¬ËûÃDz»»áÖ±½ÓÕë¶ÔÖ¸±ê£¬£¬£¬£¬£¬¶øÊÇÈëÇÖÓòÃû×¢²áÉÌ»òDNSÍйܷþÎñÉ̵ÄÕË»§£¬£¬£¬£¬£¬Åú¸ÄÖ¸±ê¹«Ë¾µÄDNSÉèÖ㬣¬£¬£¬£¬´Ó¶ø½«Ö¸±ê¹«Ë¾µÄÀûÓ÷¨Ê½»òµç×ÓÓʼþµÄÁ÷Á¿³Á¶¨ÏòÖÁ¹¥»÷ÕߵķþÎñÆ÷£¬£¬£¬£¬£¬Ö´ÐÐÖÐÑëÈ˹¥»÷²¢À¹½ØµÇ¼ʹ´¦¡£¡£¡£¡£ ¡£ÕâÖÖ¹¥»÷³ÖÐø¹¦·ò½Ï¶Ì£¬£¬£¬£¬£¬ÔÚÊýÓ×ʱÖÁÊýÌìÖ®¼ä£¬£¬£¬£¬£¬ÓÉÓÚ´óÎÞÊý¹«Ë¾Ã»ÓйØ×¢DNSÉèÖõĸü¸Ä£¬£¬£¬£¬£¬Òò¶øÕâÖÖ¹¥»÷ÄÑÒÔ±»¾õ²ì¡£¡£¡£¡£ ¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.zdnet.com/article/hackers-breached-greeces-top-level-domain-registrar/

6¡¢¸æ°×Èí¼þAgent SmithϰȾԼ2500Íǫ̀AndroidÉ豸

8827Ì«Ñô¼¯ÍÅ(Macau)¹É·ÝÓÐÏÞ¹«Ë¾-Official website
 
Check Point×êÑÐÈËÔ±·¢ÏÖԼĪÓÐ2500Íǫ̀AndroidÉ豸Òѱ»Ð¸æ°×Èí¼þAgent SmithϰȾ¡£¡£¡£¡£ ¡£¸Ã¶ñÒâÈí¼þÓÃÓÚÏòÓû§µÄÊÖ»úÍÆË͸æ°×£¬£¬£¬£¬£¬µ«¹¥»÷ÕßÒ²¿ÉÄܽ«ÆäÓÃÓÚ¸ü¶ñÒâµÄÖ÷ÕÅ£¬£¬£¬£¬£¬ÀýÈçÇÔÈ¡ÒøÐÐÍ´´¦¡£¡£¡£¡£ ¡£ÎªÁËʵÏÖ¸üÐÂ×°Öùý³Ì£¬£¬£¬£¬£¬¸Ã¶ñÒâÈí¼þÀûÓÃÁËJanus·ì϶£¬£¬£¬£¬£¬ÒÔÈÆ¹ýÀûÓ÷¨Ê½µÄÊðÃû²¢ÏòÆäÔö³¤ËÁÒâ´úÂë¡£¡£¡£¡£ ¡£ÊÜϰȾÉ豸ÊýÁ¿×î¶àµÄ¹ú¶ÈÊÇÓ¡¶È£¨³¬¹ý1500Íǫ̀£©£¬£¬£¬£¬£¬Æä´ÎÊÇÃϼÓÀ­¹ú£¨³¬¹ý250Íǫ̀£©ºÍ°Í»ù˹̹£¨½ü170Íǫ̀£©¡£¡£¡£¡£ ¡£Æ¾¾ÝCheck PointµÄµ÷²éÁ˾֣¬£¬£¬£¬£¬Agent Smith×îÔçÓÚ2016ËêÊׯðÍ·»î¶¯£¬£¬£¬£¬£¬Á½ÄêÀ´ËüÖØÒªÍ¨¹ýµÚÈý·½ÀûÓÃÉ̵ê9apps.com´«²¼¡£¡£¡£¡£ ¡£

Ô­ÎÄÁ´½Ó£ºhttps://www.bleepingcomputer.com/news/security/25-million-android-devices-infected-by-agent-smith-malware/