VERT 脅威アラート – 2018年6月マイクロソフト月例パッチの分析 (英語版)

avatar

 2018.06.19  Japanブログ編集部

Today’s VERT Alert addresses Microsoft’s June 2018 Security Updates. VERT is actively working on coverage for these vulnerabilities and expects to ship ASPL-782 on Wednesday, June 13th.

出回っている & 公開されているCVE

CVE-2018-8267

This code execution vulnerability exists in Internet Explorer’s scripting engine and relates to the handling of objects in memory. Successful exploitation would lead to code execution in the context of the current user. This could be used in a drive-by attack but also by utilizing ActiveX within a Microsoft office document.

Microsoftはこの脆弱性について、悪用可能性指標1 (悪用される可能性は高い) と評価しています。 

CVE Breakdown by Tag

While historical Microsoft Security Bulletin groupings are gone, Microsoft vulnerabilities are tagged with an identifier. This list provides a breakdown of the CVEs on a per tag basis.

TAG
CVE COUNT
CVES
WINDOWS HYPER-V
2
CVE-2018-8218, CVE-2018-8219
MICROSOFT NTFS
1
CVE-2018-1036
MICROSOFT WINDOWS
14
CVE-2018-8175, CVE-2018-8205, CVE-2018-8208, CVE-2018-8209, CVE-2018-8210, CVE-2018-8213, CVE-2018-8214, CVE-2018-8225, CVE-2018-8226, CVE-2018-8231, CVE-2018-8239, CVE-2018-0982, CVE-2018-1040, CVE-2018-8251
MICROSOFT EDGE
6
CVE-2018-0871, CVE-2018-8110, CVE-2018-8111, CVE-2018-8234, CVE-2018-8235, CVE-2018-8236
DEVICE GUARD
7
CVE-2018-8201, CVE-2018-8211, CVE-2018-8212, CVE-2018-8215, CVE-2018-8216, CVE-2018-8217, CVE-2018-8221
WINDOWS KERNEL
4
CVE-2018-8207, CVE-2018-8224, CVE-2018-8233, CVE-2018-8121
INTERNET EXPLORER
3
CVE-2018-0978, CVE-2018-8113, CVE-2018-8249
WINDOWS SHELL
1
CVE-2018-8140
HID PARSER LIBRARY
1
CVE-2018-8169
MICROSOFT OFFICE
7
CVE-2018-8244, CVE-2018-8245, CVE-2018-8246, CVE-2018-8247, CVE-2018-8248, CVE-2018-8252, CVE-2018-8254
MICROSOFT SCRIPTING ENGINE
4
CVE-2018-8227, CVE-2018-8229, CVE-2018-8243, CVE-2018-8267


その他の情報
 

In addition to the Microsoft vulnerabilities included in the May Security Guidance, a security advisory was also made available.

MICROSOFT GUIDANCE FOR SPECULATIVE STORE BYPASS [ADV180012]

On May 21, Microsoft published an advisory describing hardware vulnerabilities that involve speculative execution side channel attacks. The vulnerability “Speculative Store Bypass” (SSB) was assigned CVE-2018-3630. Today, the advisory was updated to announce support for Speculative Store Bypass Disable (SSBD) in Intel Processors.

MICROSOFT GUIDANCE FOR ROGUE SYSTEM REGISTRY READ [ADV180013]

Also on May 21, Microsoft published another advisory that Intel announced as Rogue System Registry Read (CVE-2018-4640). Successful exploitation of this advisory would allow an attacker to bypass KASLR and requires microcode/firmware updates rather than operating system updates.

JUNE 2018 ADOBE FLASH SECURITY UPDATE [ADV180014]

Microsoft released updates for Adobe Flash. These correspond with Adobe Update APSB18-19. This includes fixes for CVE-2018-4945, CVE-2018-5000, CVE-2018-5001, CVE-2018-5002.

MICROSOFT OFFICE DEFENSE IN DEPTH UPDATE [ADV180015]

Microsoft has released a defense in depth update for Microsoft Office that changes how Office applications render Office Art.

TRIPWIRE IP360 データシート

RECOMMEND関連記事


RECENT POST「VERT」の最新記事


この記事が気に入ったらいいねしよう!