ื—ืœืง ืขืœื™ื•ืŸ. 1
YouTube
ื“ืคื“ืฃ ืœืคื™ ืขื ื™ื™ืŸ - ื’ืœื” ืกืจื˜ื•ื ื™ื ืฉืชืื”ื‘ ื‘ืงื˜ื’ื•ืจื™ื•ืช ื›ืžื• ืžื•ืกื™ืงื”, ื‘ื™ื“ื•ืจ, ื—ื“ืฉื•ืช, ืžืฉื—ืงื™ื ื•ืขื•ื“. ื”ื›ืœ ืžื”ื ื•ื—ื•ืช ืฉืœ ื”ืกืคื” ืฉืœืš.


            Con 55 actualizaciones, tres vulnerabilidades reportadas pรบblicamente y exploits reportados pรบblicamente para Adobe Reader, la actualizaciรณn del martes de parches de esta semana requerirรก tiempo y pruebas antes de la implementaciรณn.  Hay casos de prueba difรญciles (lo estamos analizando, OLE) y las actualizaciones del kernel conducen a implementaciones riesgosas.  Concรฉntrese en las correcciones de IE y Adobe Reader, y tรณmese su tiempo con las actualizaciones (tรฉcnicamente complejas) de Exchange y Windows. 

ืื ื›ื‘ืจ ืžื“ื‘ืจื™ื ืขืœ ืœืงื—ืช ืืช ื”ื–ืžืŸ ืฉืœืš, ืื ืขื“ื™ื™ืŸ ื™ืฉ ืœืš Windows 10 1909, ื–ื” ื”ื—ื•ื“ืฉ ื”ืื—ืจื•ืŸ ืฉืœืš ืขื ืขื“ื›ื•ื ื™ ืื‘ื˜ื—ื”.

ืฉืœื•ืฉ ื”ืคื’ื™ืขื•ืช ืฉื ื—ืฉืคื• ื‘ืคื•ืžื‘ื™ ื”ื—ื•ื“ืฉ ื›ื•ืœืœื•ืช:

  • CVE-2021-31204 - ืจื™ื‘ื•ื™ ื”ืคื’ื™ืขื•ืช ืฉืœ ื”ืจืฉืื•ืช .NET ื•- Visual Studio
  • CVE-2021-31207 ืขืงื™ืคืช ืชืคืงื™ื“ ื”ืื‘ื˜ื—ื” ืฉืœ Microsoft Exchange Server
  • CVE-2021-31200 ืคื’ื™ืขื•ืช ืฉืœ ื‘ื™ืฆื•ืข ืงื•ื“ ืžืจื—ื•ืง ืฉืœ ื›ืœื™ ืขื–ืจ ื ืคื•ืฆื™ื ื—ืฉื•ื‘

ืชื•ื›ืœ ืœืžืฆื•ื ืžื™ื“ืข ื–ื” ื”ืžืกื•ื›ื ื‘ืื™ื ืคื•ื’ืจืคื™ืงื” ื–ื•.

ืžืงืจื™ ืžื‘ื—ืŸ ืขื™ืงืจื™ื™ื

ืœื ื“ื•ื•ื— ืขืœ ืฉื™ื ื•ื™ื™ื ื‘ืกื™ื›ื•ืŸ ื’ื‘ื•ื” ื‘ืคืœื˜ืคื•ืจืžืช Windows ื”ื—ื•ื“ืฉ. ืขื‘ื•ืจ ืžื—ื–ื•ืจ ืชื™ืงื•ื ื™ื ื–ื”, ื—ื™ืœืงื ื• ืืช ืžื“ืจื™ืš ื”ื‘ื“ื™ืงื” ืฉืœื ื• ืœืฉื ื™ ื—ืœืงื™ื:

ืฉืœ Microsoft Office

  • ื”ืชืจื—ื™ืฉ ื”ืขื™ืงืจื™ ืฉื™ืฉ ืœื ืกื•ืช ื”ื•ื ืœื”ืžื™ืจ ืžืกืžื›ื™ื ืžื“ื•ืจ ืงื•ื“ื (* .doc) ื”ืžื›ื™ืœื™ื ืฆื•ืจื•ืช ื•ืชืžื•ื ื•ืช ืœืคื•ืจืžื˜ ืžืกืžืš ืžื•ื“ืจื ื™ (* .docx). ื”ืฉื™ื ื•ื™ ื”ื•ื ื‘- wordconv.exe.
  • ื‘ื“ื•ืง ื˜ืขื™ื ื” ื•ื”ื•ืกืคืช ื’ืจืคื™ืงื” ืขื ืžืฉื˜ืจ ื”ื‘ื“ื™ืงื•ืช ื”ื—ืฉื•ื‘ ื‘ื™ื•ืชืจ ืฉืœ ืงื•ื‘ืฅ / ืคืชื— / ื”ื“ืคืก / ืฉืžื•ืจ (FOPS).
  • ืขื‘ื•ืจ Sharepoint, ื ืกื” ืœื”ื•ืกื™ืฃ ื—ืœืงื™ ืื™ื ื˜ืจื ื˜ ืœืืชืจ TEST, ื‘ืžื™ื•ื—ื“ DataFromWebPart

ืคืœื˜ืคื•ืจืžื•ืช ืฉื•ืœื—ืŸ ื”ืขื‘ื•ื“ื” ื•ื”ืฉืจืช ืฉืœ Windows

  • Bluetooth - ืžืคืชื—ื•ืช ื–ืจื™ื (ื—ื™ื‘ื•ืจื™ IrDA ื•ืขื›ื‘ืจ ื‘ืคืจื˜) ื™ื“ืจืฉื• ื‘ื“ื™ืงืช ื—ื™ื‘ื•ืจ.
  • ื™ื”ื™ื” ืฆื•ืจืš ืœื‘ื“ื•ืง ื’ื•ืคื ื™ื, ื‘ืžื™ื•ื—ื“ ื’ื•ืคื ื™ื ืคืจื˜ื™ื™ื (ื›ื ืจืื” ืฉื‘ื“ื™ืงืช FOPS ืชืกืคื™ืง).
  • ื ืกื” ืืช ื”ืคื ื™ื™ืช ื”ืชื™ืงื™ื•ืช ืžื—ื“ืฉ ื•ืฆืคื” ื‘ื›ืœ ื‘ืขื™ื•ืช ื‘ื™ืฆื•ืขื™ ืงืœื˜ / ืคืœื˜.

ื•ื”ื ื” ืžืงืจื” ื”ืžื‘ื—ืŸ ืฉืืžื•ืจ ืœืฉืžื— ืืช ืœื™ื‘ื ืฉืœ ื›ืœ ืžื”ื ื“ืกื™ ืฉื•ืœื—ืŸ ื”ืขื‘ื•ื“ื” (ื•ื”ืฉืจืช): ื›ื“ืื™ ืœื ืกื•ืช ื”ื—ื•ื“ืฉ ืืช ื”ืื•ื˜ื•ืžืฆื™ื” ืฉืœ OLE. ืžื” ื–ื” ืื•ืžืจ? ื‘ืขื™ืงืจื•ืŸ ื–ื” ืžืชื•ืจื’ื ืœืžืฆื™ืืช (ื•ื‘ื“ื™ืงื”) ืœื•ื’ื™ืงื” ืขืกืงื™ืช ืžืจื›ื–ื™ืช ื‘ื™ื™ืฉื•ืžื™ื ืงืจื™ื˜ื™ื™ื ืฉืคื•ืชื—ื• ื‘ืื•ืคืŸ ืคื ื™ืžื™ ื”ืžื‘ื•ืกืกื™ื ืขืœ ืจื›ื™ื‘ื™ื ืžื•ืจื›ื‘ื™ื, ืžืจื•ื‘ื™ื ื•ืงืฉื•ืจื™ื ื–ื” ื‘ื–ื”, ืฉืœืขืชื™ื ื“ื•ืจืฉื™ื ืฉื™ืจื•ืช ืžืจื—ื•ืง ืžืฉืจืช ืžืจื•ื—ืง. ื’ืจืกื” ืกืคืฆื™ืคื™ืช ืžืื•ื“ ืฉืœ Visual Basic 5.

ื‘ืขื™ื•ืช ื™ื“ื•ืขื•ืช

ืžื“ื™ ื—ื•ื“ืฉ ืžื™ืงืจื•ืกื•ืคื˜ ื›ื•ืœืœืช ืจืฉื™ืžื” ืฉืœ ื‘ืขื™ื•ืช ืžืขืจื›ืช ื”ืคืขืœื” ื•ืคืœื˜ืคื•ืจืžื•ืช ื™ื“ื•ืขื•ืช ื”ื›ืœื•ืœื•ืช ื‘ืžื—ื–ื•ืจ ืขื“ื›ื•ืŸ ื–ื”. ืœื”ืœืŸ ืžืกืคืจ ื‘ืขื™ื•ืช ืžืคืชื— ื‘ื’ื™ืจืกืื•ืช ื”ืขื“ื›ื ื™ื•ืช ื‘ื™ื•ืชืจ ืฉืœ ืžื™ืงืจื•ืกื•ืคื˜, ื›ื•ืœืœ:

  • ืื™ืฉื•ืจื™ ืžืขืจื›ืช ื•ืžืฉืชืžืฉื™ื ื™ื›ื•ืœื™ื ืœืœื›ืช ืœืื™ื‘ื•ื“ ื‘ืขืช ืขื“ื›ื•ืŸ ื”ืชืงืŸ ืž- Windows 10 1809 ื•ืื™ืœืš ืœื’ืจืกื” ื—ื“ืฉื” ื™ื•ืชืจ ืฉืœ Windows 10. ื”ืชืงื ื™ื ื™ื•ืฉืคืขื• ืจืง ืื ื”ื ื›ื‘ืจ ื”ืชืงื™ื ื• ืืช ื”ืขื“ื›ื•ืŸ ื”ืื—ืจื•ืŸ. ืขื“ื›ื•ืŸ ืžืฆื˜ื‘ืจ (LCU) ืคื•ืจืกื ื‘ -16 ื‘ืกืคื˜ืžื‘ืจ 2020 ื•ืื™ืœืš ื•ืื– ื™ืฉื“ืจื’ ืœื’ืจืกื” ืžืื•ื—ืจืช ื™ื•ืชืจ ืฉืœ Windows 10 ืžื›ืœ ืืžืฆืขื™ ื”ืชืงื ื” ืื• ืžืงื•ืจ [ืฉืื™ืŸ] ืฉืคื•ืจืกื ื‘- LCU 13 ื‘ืื•ืงื˜ื•ื‘ืจ 2020 ื•ืื™ืœืš.
  • ื ื™ืชืŸ ืœื”ืกื™ืจ ืืช Microsoft Edge Legacy ืขื ืขื“ื›ื•ืŸ ื–ื” ื‘ืžื›ืฉื™ืจื™ื ืขื ื”ืชืงื ื•ืช Windows ืฉื ื•ืฆืจื• ืžืžื“ื™ื” ืœื ืžืงื•ื•ื ืช ืžื•ืชืืžืช ืื™ืฉื™ืช ืื• ืžืชืžื•ื ืช ISO ืžื•ืชืืžืช ืื™ืฉื™ืช, ืืš ื”ื™ื ืœื ืžื•ื—ืœืคืช ืื•ื˜ื•ืžื˜ื™ืช ืขืœ ื™ื“ื™ Microsoft Edge ื”ื—ื“ืฉื”.
  • ืœืื—ืจ ื”ืชืงื ืช KB4467684, ืฉื™ืจื•ืช ื”ืืฉื›ื•ืœื•ืช ืขืœื•ืœ ืœื”ื™ื›ืฉืœ ืœื”ืชื—ื™ืœ ื‘ืฉื’ื™ืื” "2245 (NERR_PasswordTooShort)" ืื ื”ืžื“ื™ื ื™ื•ืช ื”ืงื‘ื•ืฆืชื™ืช "ืื•ืจืš ืกื™ืกืžื ืžื™ื ื™ืžืœื™" ืžื•ื’ื“ืจืช ืœื™ื•ืชืจ ืž -14 ืชื•ื•ื™ื.

ืชื•ื›ืœ ื’ื ืœืžืฆื•ื ืืช ืกื™ื›ื•ื ื”ื‘ืขื™ื•ืช ื”ื™ื“ื•ืขื•ืช ืฉืœ ืžื™ืงืจื•ืกื•ืคื˜ ืขื‘ื•ืจ ื’ืจืกื” ื–ื• ื‘ืขืžื•ื“ ืื—ื“.

ืชื™ืงื•ื ื™ื ื—ืฉื•ื‘ื™ื

ืžื™ืงืจื•ืกื•ืคื˜ ืœื ืคืจืกืžื” (ื”ื—ืœ ืžื”- 14 ื‘ืžืื™) ืชื™ืงื•ื ื™ื ื—ืžื™ื ื’ื“ื•ืœื™ื ืœืขื“ื›ื•ืŸ ืฉืœื™ืฉื™ ื–ื”.

ื”ืงืœื•ืช ื•ืคืชืจื•ื ื•ืช

ืขื“ ื›ื” ืœื ื ืจืื” ืฉืžื™ืงืจื•ืกื•ืคื˜ ืคืจืกืžื” ื”ืคื—ืชื” ืื• ื“ืจื›ื™ื ืœืขืงื™ืคืช ื”ื‘ืขื™ื” ืœืžื”ื“ื•ืจื” ื–ื• ื‘ืืคืจื™ืœ.

ื‘ื›ืœ ื—ื•ื“ืฉ ืื ื• ืžื—ืœืงื™ื ืืช ืžื—ื–ื•ืจ ื”ืขื“ื›ื•ืŸ ืœืžืฉืคื—ื•ืช ืžื•ืฆืจื™ื (ื›ื”ื’ื“ืจืชื ืขืœ ื™ื“ื™ ืžื™ืงืจื•ืกื•ืคื˜) ืขื ื”ืงื‘ื•ืฆื•ืช ื”ื‘ืกื™ืกื™ื•ืช ื”ื‘ืื•ืช:

  • ื“ืคื“ืคื ื™ื (Microsoft IE ื•- Edge);
  • Microsoft Windows (ืฉื•ืœื—ืŸ ืขื‘ื•ื“ื” ื•ืฉืจืช);
  • Microsoft Office (ื›ื•ืœืœ ื™ื™ืฉื•ืžื™ ืื™ื ื˜ืจื ื˜ ื•- Exchange);
  • ืคืœื˜ืคื•ืจืžื•ืช ืคื™ืชื•ื— ืฉืœ ืžื™ืงืจื•ืกื•ืคื˜ (ASP.NET Core, .NET Core ื•- Chakra Core);
  • ืื“ื•ื‘ื™ (ืงื•ืจื, ื›ืŸ ืงื•ืจื).

ื“ืคื“ืคื ื™ื

ืขื“ื›ื•ื ื™ ื”ื“ืคื“ืคืŸ ื—ื•ื–ืจื™ื ืœืชื•ืงืฃ. ื•ื”ืคืขื, ื–ื” ืื™ืฉื™. ืคืจื” ืงื“ื•ืฉื”: 35 ืขื“ื›ื•ื ื™ื ืงืจื™ื˜ื™ื™ื ืœ- Edge (ื’ืจืกืช Chromium) ื•ืขื“ื›ื•ืŸ ืงืจื™ื˜ื™ ืื—ื“ ืขื‘ื•ืจ Internet Explorer 11 (IE11). ื›ืœ ื”ืคื’ื™ืขื•ืช ื”ืžื“ื•ื•ื—ื•ืช ืขืœื•ืœื•ืช ืœื”ื•ื‘ื™ืœ ืœืชืจื—ื™ืฉ ืฉืœ ื‘ื™ืฆื•ืข ืงื•ื“ ืžืจื—ื•ืง. ืืช ื›ืœ.

ืขื“ื›ื•ื ื™ ื›ืจื•ื ืืžื•ืจื™ื ืœื”ื™ื•ืช ืงืœื™ื ื™ื—ืกื™ืช ืœื™ื™ืฉื•ื ื‘ืฉืœ ื”ืคืจื“ืช ืคืจื•ื™ืงื˜ ื›ืจื•ื ื•ืžืขืจื›ืช ื”ื”ืคืขืœื” ื”ืฉื•ืœื—ื ื™ืช. ืขื“ื›ื•ืŸ IE11 ื”ื•ื ืขื“ื›ื•ืŸ ื‘ื™ื ืืจื™ ืžืœื. ื›ืœ ื”ื™ื™ืฉื•ืžื™ื ื”ื™ืฉื ื™ื ื™ืฆื˜ืจื›ื• ืœื”ื™ื‘ื“ืง ืขื ื”ื’ืจืกื” ื”ื—ื“ืฉื” ื”ื–ื•. ื”ื•ืกืฃ ืขื“ื›ื•ืŸ ื–ื” ืœืžืืžืฅ ื”ืคืจืกื•ื ืฉืœืš ื‘- Patch Now.

Microsoft Windows

ืžื™ืงืจื•ืกื•ืคื˜ ืคืจืกืžื” ืฉืœื•ืฉื” ืขื“ื›ื•ื ื™ื ืฉื ื—ืฉื‘ื• ืงืจื™ื˜ื™ื™ื ื• 22 ื ื—ืฉื‘ื™ื ื—ืฉื•ื‘ื™ื ืœืžื—ื–ื•ืจ ื–ื”. ื”ืชื™ืงื•ื ื™ื ื”ืงืจื™ื˜ื™ื™ื ืžื˜ืคืœื™ื ื‘ื‘ืขื™ื•ืช ื‘- Hyper-V, ื‘ืื•ืคืŸ ื‘ื• Windows ืžื˜ืคืœ ื‘ื‘ืงืฉื•ืช HTTP ื•ื‘ื‘ืขื™ื•ืช ืฉืจืช ืื•ื˜ื•ืžืฆื™ื” ืฉืœ OLE. ืื™ื ื ื• ืจื•ืื™ื ืฆื•ืจืš ื“ื—ื•ืฃ ืœืกื•ื•ื’ ืืช ื”ืคื’ื™ืขื•ืช ื”ืžื“ื•ื•ื—ื•ืช ื›- "ืชื™ืงื•ืŸ ืขื›ืฉื™ื•" ื•ืื ื• ืžืืžื™ื ื™ื ื›ื™ ืชื™ื“ืจืฉ ื‘ื“ื™ืงื” ืœืคื ื™ ื”ืคืจื™ืกื” ืœื™ื™ืฆื•ืจ. ื›ื“ื™ ืœื”ื’ื‘ื™ืจ ืืช ื”ื—ืฉืฉื•ืช ื”ืืœื”, ืžื™ืงืจื•ืกื•ืคื˜ ืคืจืกืžื” ื›ืžื” ื‘ืขื™ื•ืช ืžืžืฉืง ืžืฉืชืžืฉ ืงืœื•ืช ื‘ืขื“ื›ื•ืŸ ื–ื”:

"ื”ืขื“ื›ื•ืŸ ืฉืœ Windows ืขืฉื•ื™ ืœื’ืจื•ื ืœืคืงื“ื™ ืกืจื’ืœ ื”ื’ืœื™ืœื” ืœื”ื™ืจืื•ืช ืจื™ืงื™ื ืขืœ ื”ืžืกืš ื•ืœื ืœืขื‘ื•ื“. ื‘ืขื™ื” ื–ื• ืžืฉืคื™ืขื” ืขืœ ื™ื™ืฉื•ืžื™ 32 ืกื™ื‘ื™ื•ืช ื”ืคื•ืขืœื™ื ื‘- Windows 10 (WOW64) ืฉืœ 64 ืกื™ื‘ื™ื•ืช ื”ื™ื•ืฆืจื™ื ืคืกื™ ื’ืœื™ืœื” ื‘ืืžืฆืขื•ืช ืžืขืžื“ ื’ืœื™ืœื” ืฉืœ ื—ืœื•ืŸ ื”ืขืœ USER32.DLL. ื‘ื ื•ืกืฃ, ืชื™ืชื›ืŸ ืขืœื™ื™ื” ื‘ืฉื™ืžื•ืฉ ื‘ื–ื™ื›ืจื•ืŸ ื‘ืฉื™ืขื•ืจ ืฉืœ ืขื“ 4 ื’'ื™ื’ื” ื‘ื™ื™ืฉื•ืžื™ 64 ืกื™ื‘ื™ื•ืช ื‘ืขืช ื™ืฆื™ืจืช ืคืงื“ ืกืจื’ืœ ื’ืœื™ืœื”. ยป

ืขื“ื›ื•ื ื™ ื”ืื‘ื˜ื—ื” ื”ื—ื•ื“ืฉ ืžื›ืกื™ื ืืช ื”ืื–ื•ืจื™ื ื”ืคื•ื ืงืฆื™ื•ื ืœื™ื™ื ื”ื‘ืื™ื ืฉืœ Windows:

  • ืžืกื’ืจื•ืช ืคืœื˜ืคื•ืจืžื” ืฉืœ Windows ื•ื™ื™ืฉื•ืžื™ื;
  • ืœื™ื‘ืช ื—ืœื•ื ื•ืช;
  • ืžื ื•ืข ื”ืกืงืจื™ืคื˜ ืฉืœ ืžื™ืงืจื•ืกื•ืคื˜;
  • ืคืœื˜ืคื•ืจืžืช Windows Silicon.

ื”ืชื™ืงื•ืŸ ื”ืžื“ื•ืจื’ ื‘ื™ื•ืชืจ ื‘ื—ื•ื“ืฉ ื–ื” ื”ื•ื CVE-2021-31194, ืคื’ื™ืขื•ืช ืงืจื™ื˜ื™ืช ื‘ืžื ื•ืข ื”ืื•ื˜ื•ืžืฆื™ื” ืฉืœ ืžื™ืงืจื•ืกื•ืคื˜ OLE. ืงืฉื” ื™ื”ื™ื” ืœื‘ื“ื•ืง ืขื“ื›ื•ืŸ ื–ื” ืžื›ื™ื•ื•ืŸ ืฉืชืฆื˜ืจืš ืœืžืฆื•ื ื™ื™ืฉื•ื ืขื ืฉืจืช OLE ื•ืœื”ืฉื•ื•ืช ืืช ื”ืชื•ืฆืื•ืช ื‘ื™ืŸ ืฉืชื™ ื”ื’ืจืกืื•ืช. ืžื™ืงืจื•ืกื•ืคื˜ ื’ื ืกื™ืคืงื” ื˜ื™ืคื™ื ื›ื™ืฆื“ ืœื”ืกื™ืจ ื’ื™ืฉื” ืžืจื—ื•ืง ืœืžืื’ืจื™ JET, ืื•ืชื ืชื•ื›ืœื• ืœืžืฆื•ื ื›ืืŸ. ื”ื•ืกืฃ ืืช ืขื“ื›ื•ื ื™ Windows ืืœื” ืœืžื—ื–ื•ืจ ื”ื”ืคืฆื” ื”ืกื˜ื ื“ืจื˜ื™ ืฉืœืš ืขื ื“ื’ืฉ ืขืœ ื‘ื“ื™ืงืช ื™ื™ืฉื•ืžื™ ื”ืœื™ื‘ื” ื”ืขืกืงื™ื™ื ืฉืœืš ืœืชืœื•ืช OLE, JET ื•- Hyper-V.

ืฉืœ Microsoft Office

ื”ืชื™ืงื•ื ื™ื ื•ื”ืขื“ื›ื•ื ื™ื ืฉืœ ืคืœื˜ืคื•ืจืžืช ื”ืคืจื™ื•ืŸ ืฉืœ Microsoft Office ื”ื—ื•ื“ืฉ ืžืฉืคื™ืขื™ื ืขืœ ื’ืจืกืื•ืช ื”ื‘ืกื™ืก ื”ื‘ืื•ืช:

  • Office 2013 (ืœืงื•ื—): SP1 - 15.0.4569.1506;
  • SharePoint 2013 (ืฉืจืช): SP1 - 15.0.4569.1506 ื•- 15.0.4571.1502;
  • ืื•ืคื™ืก 2016 (ืœืงื•ื—): RTM - 16.0.4266.1001;
  • SharePoint 2016 (ืฉืจืช): RTM - 16.0.4351.1000.

ื™ืฉ ืœื ื• ื ืกื™ืขื” ืงืœื” ื”ื—ื•ื“ืฉ ืขื ืชื™ืงื•ื ื™ Office. ืื™ืŸ ืคื’ื™ืขื•ืช ื”ืžื“ื•ืจื’ื•ืช ืงืจื™ื˜ื™ื•ืช ื•ืจืง 17 ืžื“ื•ืจื’ื•ืช ื—ืฉื•ื‘ื•ืช. ืื ืืชื” ืขื“ื™ื™ืŸ ืžืฉืชืžืฉ ื‘ืžืกื“ื™ ื ืชื•ื ื™ื ืฉืœ JET, ื™ื”ื™ื” ืขืœื™ืš ืœื•ื•ื“ื ืฉื”ืกืจืช ื’ื™ืฉื” ืžืจื—ื•ืง ื‘ืืžืฆืขื•ืช ื”ืขืจืช ืชืžื™ื›ื” ื–ื• ืžืžื™ืงืจื•ืกื•ืคื˜. ื”ื•ืกืฃ ืืช ื”ืชื™ืงื•ื ื™ื ื”ืงื˜ื ื™ื ื™ื—ืกื™ืช ืœืชื•ื›ื ื™ืช ื”ืขื“ื›ื•ื ื™ื ื”ืจื’ื™ืœื” ืฉืœ Office.

Microsoft Exchange

ืœืื—ืจ ืขื“ื›ื•ืŸ Adobe Reader (ืจืื” ืœื”ืœืŸ), ื™ื”ื™ื” ืขืœื™ืš ืœื”ืฉืงื™ืข ื–ืžืŸ ืžื” ื‘ืขื“ื›ื•ืŸ ื”ืื—ืจื•ืŸ ืฉืœ Microsoft Exchange Server. ืขื ืฉืœื•ืฉื” ืขื“ื›ื•ื ื™ื ืฉื“ื•ืจื’ื• ื›- Major ื•ืจืง ืชื™ืงื•ืŸ ืื—ื“ ืฉืคื•ืจืกื ื›ืžืชื•ืŸ, ืžื—ื–ื•ืจ ืขื“ื›ื•ืŸ ื–ื” ืงืฉื•ืจ ืœื‘ืขื™ื•ืช ื–ื™ื•ืฃ ืจืฆื™ื ื™ื•ืช ื•ืขืงื™ืคืช ืื‘ื˜ื—ื”.

ืžื™ืงืจื•ืกื•ืคื˜ ืคืจืกืžื” ืืช ื”ื”ืขืจื” ื”ื‘ืื” ื‘ื ื•ืฉื ื”ืืชื’ืจ ื”ื˜ื›ื ื™ ืฉืœ ืขื“ื›ื•ืŸ ืฉืจืช ื”- Exchange ืฉืœืš, ื”ื›ื•ืœืœืช: "ื›ืฉืืชื” ืžื ืกื” ืœื”ืชืงื™ืŸ ื™ื“ื ื™ืช ืืช ืขื“ื›ื•ืŸ ื”ืื‘ื˜ื—ื” ืขืœ ื™ื“ื™ ืœื—ื™ืฆื” ื›ืคื•ืœื” ืขืœ ืงื•ื‘ืฅ ื”ืขื“ื›ื•ืŸ (.MSP) ื›ื“ื™ ืœื”ืคืขื™ืœ ืื•ืชื• ื‘ืžืฆื‘ ืจื’ื™ืœ (ื›ืœื•ืžืจ, ืœื ื›ืžื ื”ืœ), ื—ืœืง ืžื”ืงื‘ืฆื™ื ืœื ืžืชืขื“ื›ื ื™ื ื›ื”ืœื›ื”. ื›ืืฉืจ ื‘ืขื™ื” ื–ื• ืžืชืจื—ืฉืช, ืื™ื ืš ืžืงื‘ืœ ื”ื•ื“ืขืช ืฉื’ื™ืื” ืื• ื›ืœ ืื™ื ื“ื™ืงืฆื™ื” ืœื›ืš ืฉืขื“ื›ื•ืŸ ื”ืื‘ื˜ื—ื” ืœื ื”ื•ืชืงืŸ ื›ื”ืœื›ื”. ืขื ื–ืืช, ื’ื™ืฉื” ืœืื™ื ื˜ืจื ื˜ ืฉืœ Outlook (OWA) ื•ืœื•ื— ื”ื‘ืงืจื” ืฉืœ Exchange (ECP) ืขืฉื•ื™ื™ื ืœื”ืคืกื™ืง ืœืขื‘ื•ื“. ยป

ืงื— ืืช ื”ื–ืžืŸ ืฉืœืš, ื ื•ืฉืื™ื ืืœื” ืื™ื ื ื“ื—ื•ืคื™ื (ื›ืžื• ื‘ื—ื•ื“ืฉ ืฉืขื‘ืจ). ืื ื• ืขื“ื™ื™ืŸ ืฉื•ืžืขื™ื ื•ื—ื•ื•ื™ื ื‘ืขื™ื•ืช ื‘ืขื“ื›ื•ืŸ ืฉืจืช Exchange, ื•ืœืžืจื•ืช ืฉืœื ื”ื™ื™ื ื• ืžืฆืคื™ื ืœื‘ืขื™ื•ืช ืชืื™ืžื•ืช ืื• ืคื•ื ืงืฆื™ื•ื ืœื™ื•ืช ื‘ืขื“ื›ื•ืŸ Exchange ื–ื”, ื”ืœื•ื’ื™ืกื˜ื™ืงื” ื”ื ื›ื•ื ื” ืขื ืขื“ื›ื•ืŸ ืžืื™ ื–ื” ืขืฉื•ื™ื” ืœื“ืจื•ืฉ ื”ืชื™ื™ื—ืกื•ืช. ื”ื•ืกืฃ ืขื“ื›ื•ืŸ ืฉืจืช Exchange ื–ื” ืœืžืฉื˜ืจ ืฉื—ืจื•ืจ ื”ืชื™ืงื•ื ื™ื ื”ืจื’ื™ืœ ืฉืœืš.

ืคืœื˜ืคื•ืจืžื•ืช ืคื™ืชื•ื— ืฉืœ ืžื™ืงืจื•ืกื•ืคื˜

ืžื™ืงืจื•ืกื•ืคื˜ ืคืจืกืžื” ื—ืžื™ืฉื” ืขื“ื›ื•ื ื™ ื›ืœื™ ืžืคืชื—, ื›ื•ืœื ื ื—ืฉื‘ื• ื—ืฉื•ื‘ื™ื, ื•ืžืฉืคื™ืขื™ื ืขืœ Visual Studio ื•- Microsoft .NET (ืฉื™ืฉ ืœื” ืชืœื•ืช ื‘ืฆื™ื ื•ืจ Visual Studio). ืงื‘ื•ืฆื•ืช ื”ืžื•ืฆืจื™ื ื”ืกืคืฆื™ืคื™ื•ืช ื”ื‘ืื•ืช ืžืชืขื“ื›ื ื•ืช ื”ื—ื•ื“ืฉ:

  • ืžืจื—ื•ืง ืงื•ื“ Visual Studio ืžืจื—ื•ืง - ืกื™ื•ืžืช ืžื™ื›ืœ;
  • Microsoft Visual Studio 2019;
  • .NET 5.0 ื•- .NET Core 3.1.

ืขื“ื›ื•ืŸ ืจื›ื™ื‘ ื”ืžื›ื•ืœื•ืช ืฉืœ Visual Studios (CVE-2021-31204) ืฆืคื•ื™ ืœื“ืจื•ืฉ ืชืฉื•ืžืช ืœื‘ ืจื‘ื” ื‘ื™ื•ืชืจ ื”ื—ื•ื“ืฉ, ื‘ืฉืœ ื”ื“ื™ื•ื•ื— ื”ืฆื™ื‘ื•ืจื™ ืขืœ ืคื’ื™ืขื•ืช ื‘ื™ืฆื•ืข ืงื•ื“ ืžืจื—ื•ืง ื–ื•. ืืจื‘ืข ื”ื‘ืขื™ื•ืช ื”ื ื•ืชืจื•ืช ื“ื•ืจืฉื•ืช ืื™ื ื˜ืจืืงืฆื™ื” ืฉืœ ื”ืžืฉืชืžืฉื™ื ื•ื’ื™ืฉื” ืžืงื•ืžื™ืช ืœืžืขืจื›ืช ื”ื™ืขื“ (ื•ืžื›ืืŸ ื”ื”ืขืจื” ื”ื—ืฉื•ื‘ื” ืžืžื™ืงืจื•ืกื•ืคื˜). ื”ื•ืกืฃ ืขื“ื›ื•ื ื™ื ืืœื” ืœืžื—ื–ื•ืจ ืฉื—ืจื•ืจ ืขื“ื›ื•ื ื™ ื”ืคื™ืชื•ื— ื”ืกื˜ื ื“ืจื˜ื™ ืฉืœืš.

ืื“ื•ื‘ื™ (ื”ื—ื•ื“ืฉ ื”ื•ื Reader, Adobe Reader)

ืœืžืจื•ืช ืฉืžื™ืงืจื•ืกื•ืคื˜ ืœื ื›ืœืœื” ืชื™ืงื•ืŸ ืฉืœ Adobe ื‘ืžื—ื–ื•ืจ ื”ืฉื—ืจื•ืจ ืฉืœื”ื, ื”ื™ื” ืชื™ืงื•ืŸ ืงืจื™ื˜ื™ ืขื‘ื•ืจ Adobe Reader ื‘ืขื“ื›ื•ืŸ ื”ืชื™ืงื•ืŸ ื”ืื—ืจื•ืŸ ืฉืœ Adobe. ืื“ื•ื‘ื™ ื“ื™ื•ื•ื—ื” ื›ื™ ื”ืคื’ื™ืขื•ืช CVE-2021-28550 ื ื•ืฆืœื” ื‘ื˜ื‘ืข. ืœืžืจื‘ื” ื”ืฆืขืจ, ื”ื“ื‘ืจ ื”ื•ืคืš ืืช ื ื•ืฉื ื”ืืคืก ืฉืœ Adobe ืœืžืฉืคื™ืข ืขืœ ื›ืœ ืžื›ืฉื™ืจื™ ืžื™ืงืจื•ืกื•ืคื˜ ืขื ืคื’ื™ืขื•ืช ืฉืœ ื‘ื™ืฆื•ืข ืงื•ื“ ืžืจื—ื•ืง ื”ืขืœื•ืœื” ืœื’ืจื•ื ืœื’ื™ืฉื” ืžืœืื” ืœืžืขืจื›ืช ืฉื ืคื’ืขื”.

ื”ื•ืกืฃ ืืช ืขื“ื›ื•ืŸ Adobe Reader ืœืžืคืขื™ืœ "Patch Now". ื•ื›ืŸ, ื‘ืืžืช ื—ืฉื‘ืชื™ ืฉื ื•ื›ืœ ืœื”ืกื™ืจ ืืช ื”ื—ืœืง ื”ื–ื”. ืื•ืœื™ ื‘ืคืขื ื”ื‘ืื”.

<p>Copyright ยฉ 2021 IDG Communications, Inc.</p>
ืฉืชืฃ ื–ืืช
A %d ื‘ืœื•ื’ืจื™ื ื›ืืœื”: