0x00基本信息
CVE编号 | CVE-2022-41073 | 信息来源 | 互联网探测 |
CNVD编号 | 未分配 | CNNVD编号 | CNNVD-202211-2269 |
公开日期 | 2022-11-08 | 更新日期 | 2022-11-09 |
威胁类型 | 权限提升 | 技术类型 | 越界读取 |
公开PoC|EXP | 无 | 在野利用 | 有 |
影响对象范围 | 亿级 | 公开技术细节 | 无 |
0x01漏洞描述
该漏洞允许本地用户提升系统的权限。该漏洞的存在是由于 Windows Print Spooler 中的边界错误。本地用户可以运行特制程序来触发内存损坏并使用 SYSTEM 权限执行任意代码。
0x02利用条件
利用此漏洞的低权限。
0x03影响版本
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows RT 8.1
Windows 10 Version 21H2 for ARM64-based Systems
Windows 10 Version 21H2 for 32-bit Systems
Windows 11 for ARM64-based Systems
Windows 11 for x64-based Systems
Windows 10 Version 21H1 for x64-based Systems
Windows Server 2019 (Server Core installation)
Windows Server 2019
Windows 10 Version 1809 for ARM64-based Systems
Windows 10 Version 1809 for x64-based Systems
Windows 8.1 for x64-based systems
Windows 8.1 for 32-bit systems
Windows 7 for x64-based Systems Service Pack 1
Windows 7 for 32-bit Systems Service Pack 1
Windows Server 2016 (Server Core installation)
Windows Server 2016
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems
Windows 10 for x64-based Systems
Windows 10 for 32-bit Systems
Windows 10 Version 22H2 for 32-bit Systems
Windows 10 Version 22H2 for ARM64-based Systems
Windows 10 Version 22H2 for x64-based Systems
Windows 11 Version 22H2 for x64-based Systems
Windows 11 Version 22H2 for ARM64-based Systems
Windows 10 Version 21H2 for x64-based Systems
Windows 10 Version 20H2 for ARM64-based Systems
Windows 10 Version 20H2 for 32-bit Systems
Windows 10 Version 20H2 for x64-based Systems
Windows Server 2022 Datacenter: Azure Edition (Hotpatch)
Windows Server 2022 (Server Core installation)
Windows Server 2022
Windows 10 Version 21H1 for 32-bit Systems
Windows 10 Version 21H1 for ARM64-based Systems
Windows 10 Version 1809 for 32-bit Systems
Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 (Server Core installation)
Windows Server 2012
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
0x04检测方法
借助版本进行批量检测
0x05修复方案
请尽快安装对应或高于影响范围版本的补丁;
目前官方已发布安全版本修复上述漏洞,建议受影响的用户升级至安全版本,参考链接如下:
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41073
0x06参考链接
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2022-41073
![weinxin](http://zone.ci/zone_ci_images/zone.ci.png)
评论