更新时间:2022-06-27 15:27
漏洞背景
3月23日,微软发布公告ADV200006称Adobe Type Manager Library中存在2个未修补的漏洞,当Windows Adobe Type Manager Library处理Adobe Type 1 PostScript 格式字体时存在两个远程执行代码漏洞。攻击者利用漏洞可在多个场景实施攻击,比如说服受害者在Windows的预览中访问一个特殊构造的文档。
漏洞影响范围
- Windows 10 for 32-bit Systems
- Windows 10 for x64-based Systems Windows 10Version 1607 for 32-bit Systems
- Windows 10 Version 1607 for x64-basedSystems
- Windows 10 Version 1709 for 32-bit Systems
- Windows 10 Version 1709 for ARM64-basedSystems
- Windows 10 Version 1709 for x64-basedSystems
- Windows 10 Version 1803 for 32-bit Systems
- Windows 10 Version 1803 for ARM64-basedSystems
- Windows 10 Version 1803 for x64-basedSystems
- Windows 10 Version 1809 for 32-bit Systems
- Windows 10 Version 1809 for ARM64-basedSystems
- Windows 10 Version 1809 for x64-basedSystems
- Windows 10 Version 1903 for 32-bit Systems
- Windows 10 Version 1903 for ARM64-basedSystems
- Windows 10 Version 1903 for x64-basedSystems
- Windows 10 Version 1909 for 32-bit Systems
- Windows 10 Version 1909 for ARM64-basedSystems
- Windows 10 Version 1909 for x64-basedSystems
- Windows 7 for 32-bit Systems Service Pack 1
- Windows 7 for x64-based Systems ServicePack 1
- Windows 8.1 for 32-bit systems
- Windows 8.1 for x64-based systems
- Windows RT 8.1
- Windows Server 2008 for 32-bit SystemsService Pack 2
- Windows Server 2008 for 32-bit SystemsService Pack 2 (Server Core installation)
- Windows Server 2008 for Itanium-BasedSystems Service Pack 2
- Windows Server 2008 for x64-based SystemsService Pack 2
- Windows Server 2008 for x64-based SystemsService Pack 2 (Server Core installation)
- Windows Server 2008 R2 for Itanium-BasedSystems Service Pack 1
- Windows Server 2008 R2 for x64-basedSystems Service Pack 1
- Windows Server 2008 R2 for x64-basedSystems Service Pack 1 (Server Core installation)
- Windows Server 2012
- Windows Server 2012 (Server Coreinstallation)
- Windows Server 2012 R2
- Windows Server 2012 R2 (Server Coreinstallation)
- Windows Server 2016
- Windows Server 2016 (Server Coreinstallation)
- Windows Server 2019
- Windows Server 2019 (Server Coreinstallation)
- Windows Server, version 1803 (Server CoreInstallation)
- Windows Server, version 1903 (Server Coreinstallation)
- Windows Server, version 1909 (Server Coreinstallation)
漏洞等级
高危
规则防护
云防火墙虚拟补丁已支持防护
规则类型
代码执行
修复建议
安装微软官方漏洞补丁
