CVE-2024-38077 漏洞潜藏于 Windows 远程桌面许可管理服务(RDL)中,攻击者可以利用该漏洞,无需任何权限,受害者无需任何操作,即可实现远程执行恶意代码,以完全控制服务器。这意味着,攻击者可以随意窃取、篡改、删除服务器上的重要数据,甚至利用服务器对其他系统发起攻击。
喵云 (MiaoVPS) 从可信渠道收悉本次漏洞威胁情报后高度重视,第一时间组织小组对漏洞影响评估并发布本文章。
进入补丁下载页面可能会有两个补丁链接,一个是 x86 一个是 x64,下载补丁前请辨别清楚。
补丁下载完成后直接执行即可,更新补丁期间可能会重启系统,请做好数据备份,并且根据业务错峰修补。
| 系统版本 | 发布的补丁 ID |
|---|---|
| Windows Server 2012 R2 (Server Core installation) | 5040456 |
| Windows Server 2012 R2 | 5040456 |
| Windows Server 2012 (Server Core installation) | 5040485 |
| Windows Server 2012 | 5040485 |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | 5040497 |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) | 5040498 |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | 5040497 |
| Windows Server 2008 R2 for x64-based Systems Service Pack 1 | 5040498 |
| Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) | 5040499 |
| Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) | 5040490 |
| Windows Server 2008 for x64-based Systems Service Pack 2 | 5040499 |
| Windows Server 2008 for x64-based Systems Service Pack 2 | 5040490 |
| Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) | 5040499 |
| Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation) | 5040490 |
| Windows Server 2008 for 32-bit Systems Service Pack 2 | 5040499 |
| Windows Server 2008 for 32-bit Systems Service Pack 2 | 5040490 |
| Windows Server 2016 (Server Core installation) | 5040434 |
| Windows Server 2016 | 5040434 |
| Windows Server 2022, 23H2 Edition (Server Core installation) | 5040438 |
| Windows Server 2022 (Server Core installation) | 5040437 |
| Windows Server 2022 | 5040437 |
| Windows Server 2019 (Server Core installation) | 5040430 |
| Windows Server 2019 | 5040430 |
已定性为 严重 级的 Windows 远程桌面授权服务远程代码执行漏洞
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2024-38077
