¡¾·ì϶¹«¸æ¡¿Windows Wi-FiÇý¶¯·¨Ê½Ô¶³Ì´úÂëÖ´Ðзì϶(CVE-2024-30078)

°ä²¼¹¦·ò 2024-06-17

Ò»¡¢·ì϶¸ÅÊö

·ìϼûû³Æ

    Windows   Wi-Fi Çý¶¯·¨Ê½Ô¶³Ì´úÂëÖ´Ðзì϶

CVE   ID

CVE-2024-30078

·ì϶ÀàÐÍ

RCE

·¢ÏÖ¹¦·ò

2024-06-12

·ì϶ÆÀ·Ö

8.8

·ì϶µÈ¼¶

¸ßΣ

¹¥»÷ÏòÁ¿

ÁÚ½ü

ËùÐèȨÏÞ

ÎÞ

ÀûÓÃÄѶÈ

µÍ

Óû§½»»¥

ÎÞ

PoC/EXP

δ¹«¿ª

ÔÚÒ°ÀûÓÃ

δ·¢ÏÖ

 

6 ÔÂ12ÈÕ£¬±¦ÔËÀ³¹Ù·½ÍøÕ¾¼¯ÍÅVSRC¼à²âµ½Î¢Èí6Ô°²È«¸üÐÂÖн¨¸´ÁËWindows Wi-Fi Çý¶¯·¨Ê½Ô¶³Ì´úÂëÖ´Ðзì϶£¨CVE-2024-30078£©£¬ÆäCVSSÆÀ·ÖΪ8.8£¬¸Ã·ì϶ӰÏìÁË Windows ²Ù×÷ϵͳµÄËùÓÐÊÜÖ§³Ö°æ±¾¡£

Windows Wi-Fi Çý¶¯·¨Ê½ÖдæÔÚÊäÈëÑéÖ¤²»µ±·ì϶£¬Î´¾­Éí·ÝÑéÖ¤µÄ¹¥»÷ÕßÄܹ»ÏòʹÓÃWi-FiÍøÂçÊÊÅäÆ÷µÄÏàÁÚϵͳ/É豸·¢ËͶñÒâÍøÂçÊý¾Ý°ü£¬µ¼ÖÂÔÚÎÞÐèÓû§½»»¥µÄÇé¿öÏÂʵÏÖÔ¶³Ì´úÂëÖ´ÐС£ÀûÓø÷ì϶±ØÒª¿¿½üÖ¸±êϵͳÀ´·¢ËͺͽӹÜÎÞÏߵ紫Êä¡£

 

 

¶þ¡¢Ó°ÏìÁìÓò

ÊÜÓ°Ïìϵͳ¼°°æ±¾

ƽ̨

ÊÜÓ°ÏìµÄ΢ÈíÇý¶¯·¨Ê½°æ±¾

Windows   10 Version 1809

32-bit   Systems

x64-based   Systems

ARM64-based   Systems

10.0.0   - 10.0.17763.5936֮ǰ

Windows   Server 2019

x64-based   Systems

10.0.0   - 10.0.17763.5936֮ǰ

Windows   Server 2019 (Server Core installation)

x64-based   Systems

10.0.0   - 10.0.17763.5936֮ǰ

Windows   Server 2022

x64-based   Systems

 10.0.0 -10.0.20348.2527֮ǰ

10.0.0   - 10.0.20348.2522֮ǰ

Windows   11 version 21H2

x64-based   Systems

ARM64-based   Systems

10.0.0   - 10.0.22000.3019֮ǰ

Windows   10 Version 21H2

32-bit   Systems

ARM64-based   Systems

(x64-based   Systems)

10.0.0   - 10.0.19043.4529֮ǰ

Windows   11 version 22H2

ARM64-based   Systems

x64-based   Systems

10.0.0   - 10.0.22621.3737֮ǰ

Windows   10 Version 22H2

x64-based   Systems

ARM64-based   Systems

32-bit   Systems

10.0.0   - 10.0.19043.4529֮ǰ

Windows   11 version 22H3

ARM64-based   Systems

10.0.0   - 10.0.22631.3737֮ǰ

Windows   11 Version 23H2

x64-based   Systems

10.0.0   - 10.0.22631.3737֮ǰ

Windows   Server 2022¡¢23H2 Edition (Server Core installation)

x64-based   Systems

10.0.0   - 10.0.25398.950֮ǰ

Windows   10 Version 1507

32-bit   Systems

x64-based   Systems

10.0.0   - 10.0.10240.20680֮ǰ

Windows   10 Version 1607

32-bit   Systems

x64-based   Systems

10.0.0   - 10.0.14393.7070֮ǰ

Windows   Server 2016

x64-based   Systems

10.0.0   - 10.0.14393.7070֮ǰ

Windows   Server 2016 (Server Core installation)

x64-based   Systems

10.0.0   -10.0.14393.7070֮ǰ

Windows   Server 2008 Service Pack 2

32-bit   Systems

6.0.0   - 6.0.6003.22720֮ǰ

Windows   Server 2008 Service Pack 2 (Server Core installation)

32-bit   Systems

x64-based   Systems

6.0.0   - 6.0.6003.22720֮ǰ

Windows   Server 2008 Service Pack 2

x64-based   Systems

6.0.0   - 6.0.6003.22720֮ǰ

Windows   Server 2008 R2 Service Pack 1

x64-based   Systems

6.1.0   - 6.1.7601.27170֮ǰ

Windows   Server 2008 R2 Service Pack 1 (Server Core installation)

x64-based   Systems

6.0.0   - 6.1.7601.27170֮ǰ

Windows   Server 2012

x64-based   Systems

6.2.0   - 6.2.9200.24919֮ǰ

Windows   Server 2012 (Server Core installation)

x64-based   Systems

6.2.0   - 6.2.9200.24919֮ǰ

Windows   Server 2012 R2

x64-based   Systems

6.3.0   - 6.3.9600.22023֮ǰ

Windows   Server 2012 R2 (Server Core installation)

x64-based   Systems

6.3.0   - 6.3.9600.22023֮ǰ

 

 


Èý¡¢°²È«´ëÊ©

3.1 Éý¼¶°æ±¾

΢ÈíÒÑÔÚ6Ô²¹¶¡ÈÕÖа䲼Á˸÷ì϶µÄ°²È«¸üУ¬½¨ÒéÊÜÓ°ÏìÓû§ÊµÊ±×°Öò¹¶¡½¨¸´¸Ã·ì϶¡£

£¨Ò»£© Windows Update×Ô¶¯¸üÐÂ

Microsoft UpdateĬÈÏÆôÓ㬵±ÏµÍ³¼ì²âµ½¿ÉÓøüÐÂʱ£¬½«»á×Ô¶¯ÏÂÔظüв¢±ÉÈËÒ»´ÎÆô¶¯Ê±×°Öá£Ò²¿ÉÑ¡Ôñͨ¹ýÒÔϲ½ÖèÊÖ¶¯½øÐиüУº

1¡¢µã»÷¡°ÆðÍ·²Ëµ¥¡±»ò°´Windows¿ì½Ý¼ü£¬µã»÷½øÈë¡°ÉèÖá±

2¡¢Ñ¡Ôñ¡°¸üкͰ²È«¡±£¬½øÈë¡°Windows¸üС±£¨Windows 8¡¢Windows 8.1¡¢Windows Server 2012ÒÔ¼°Windows Server 2012 R2¿Éͨ¹ý½ÚÔìÃæ°å½øÈë¡°Windows¸üС±£¬¾ßÌå²½ÖèΪ¡°½ÚÔìÃæ°å¡±->¡°ÏµÍ³ºÍ°²È«¡±->¡°Windows¸üС±£©

3¡¢Ñ¡Ôñ¡°²é³­¸üС±£¬ÆÚ´ýϵͳ×Ô¶¯²é³­²¢ÏÂÔØ¿ÉÓøüС£

4¡¢¸üÐÂʵÏÖºó³ÁÆôÍÆËã»ú£¬¿Éͨ¹ý½øÈë¡°Windows¸üС±->¡°²é¿´¸üк¹Çà¼Í¼¡±²é¿´ÊÇ·ñ³É¹¦×°ÖÃÁ˸üС£¶ÔÓÚûÓгɹ¦×°ÖõĸüУ¬Äܹ»µã»÷¸Ã¸üÐÂÃû³Æ½øÈë΢Èí¹Ù·½¸üÐÂÃèÊöÁ´½Ó£¬µã»÷×îеÄSSUÃû³Æ²¢ÔÚÐÂÁ´½ÓÖеã»÷¡°Microsoft ¸üÐÂĿ¼¡±£¬¶øºóÔÚÐÂÁ´½Óµ±Ñ¡ÔñºÏÓÃÓÚÖ¸±êϵͳµÄ²¹¶¡½øÐÐÏÂÔز¢×°Öá£

£¨¶þ£© ÊÖ¶¯×°ÖøüÐÂ

Microsoft¹Ù·½ÏÂÔØÏàÓ¦²¹¶¡½øÐиüС£

ÏÂÔØÁ´½Ó£º

https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-30078

3.2 һʱ´ëÊ©

ÔÝÎÞ¡£

3.3 ͨÓý¨Òé

l  ¶¨ÆÚ¸üÐÂϵͳ²¹¶¡£¬Ï÷¼õϵͳ·ì϶£¬ÌáÉý·þÎñÆ÷µÄ°²È«ÐÔ¡£

l  ¼ÓǿϵͳºÍÍøÂçµÄ½Ó¼û½ÚÔ죬Åú¸Ä·À»ðǽսÊõ£¬¹Ø¹Ø·Ç±ØÒªµÄÀûÓö˿ڻò·þÎñ£¬Ï÷¼õ½«Î£ÏÕ·þÎñ£¨ÈçSSH¡¢RDPµÈ£©Â¶³öµ½¹«Íø£¬Ï÷¼õ¹¥»÷Ãæ¡£

l  ʹÓÃÆóÒµ¼¶°²È«²úÆ·£¬ÌáÉýÆóÒµµÄÍøÂ簲ȫ»úÄÜ¡£

l  ¼ÓǿϵͳÓû§ºÍȨÏÞÖÎÀí£¬ÆôÓöà³É·ÖÈÏÖ¤»úÔìºÍ×îÓ×ȨÏÞ×¼Ôò£¬Óû§ºÍÈí¼þȨÏÞӦά³ÖÔÚ×îµÍÏ޶ȡ£

l  ÆôÓÃÇ¿ÃÜÂëÕ½Êõ²¢ÉèÖÃΪ¶¨ÆÚÅú¸Ä¡£

3.4 ²Î¿¼Á´½Ó

https://msrc.microsoft.com/update-guide/en-US/advisory/CVE-2024-30078

https://www.cve.org/CVERecord?id=CVE-2024-30078

 


ËÄ¡¢°æ±¾ÐÅÏ¢

°æ±¾

ÈÕÆÚ

±¸×¢

V1.0

2024-06-17

³õ´Î°ä²¼

 

 

Îå¡¢¸½Â¼

5.1 ±¦ÔËÀ³¹Ù·½ÍøÕ¾¼ò½é

±¦ÔËÀ³¹Ù·½ÍøÕ¾³ÉÁ¢ÓÚ1996Ä꣬ÊÇÓÉÁôÃÀ²©Ê¿ÑÏÍû¼ÑŮʿ´´½¨µÄ¡¢Õ¼ÓÐÆëÈ«×ÔÖ÷֪ʶ²úȨµÄÐÅÏ¢°²È«¸ß¿Æ¼¼ÆóÒµ¡£ÊǹúÄÚ×î¾ßʵÁ¦µÄÐÅÏ¢°²È«²úÆ·¡¢°²È«·þÎñ½â¾ö¹æ»®µÄÁ캽ÆóÒµÖ®Ò»¡£

¹«Ë¾×ܲ¿Î»ÓÚ±±¾©ÊÐÖйشåÈí¼þÔ°±¦ÔËÀ³¹Ù·½ÍøÕ¾´óÏ㬹«Ë¾Ô±¹¤6000ÓàÈË£¬Ñз¢ÍŶÓ1200ÓàÈË, ¼¼Êõ·þÎñÍŶÓ1300ÓàÈË¡£ÔÚÈ«¹ú¸÷Ê¡¡¢ÊÓ×¢×ÔÖÎÇøÉèÁ¢·ÖÖ§»ú¹¹ÁùÊ®¶à¸ö£¬Õ¼Óи²¸ÇÈ«¹úµÄÏúÊÛϵͳ¡¢Çþ·ϵͳºÍ¼¼ÊõÖ§³Öϵͳ¡£¹«Ë¾ÓÚ2010Äê6ÔÂ23ÈÕÔÚÀö½­ÖÐÓ×°å¹ÒÅÆÉÏÊС££¨¹ÉƱ´úÂ룺002439£©

¶àÄêÀ´£¬±¦ÔËÀ³¹Ù·½ÍøÕ¾ÖÂÁ¦ÓÚÌṩӵÓйú¼Ê¾ºÕùÁ¦µÄ×ÔÖ÷´´Ðµİ²È«²úÆ·ºÍ×î¼Ñʵ¼Ê·þÎñ£¬Ô®ÊÖ¿Í»§È«ÃæÌáÉýÆäIT»ù´¡ÉèÊ©µÄ°²È«ÐԺͳö²úЧÁ¦£¬Îª´òÔìºÍÌáÉý¹ú¼Ê»¯µÄÃñ×åÐÅÏ¢°²È«²úÒµÁì¾üÆ·Åƶø²»Ð¸ÖÂÁ¦¡£

5.2 ¹ØÓÚ±¦ÔËÀ³¹Ù·½ÍøÕ¾

±¦ÔËÀ³¹Ù·½ÍøÕ¾°²È«Ó¦¼±ÏìÓ¦ÖÐÐÄÒÑ°ä²¼1000¶à¸ö·ì϶¹«¸æ΢·çÏÕÔ¤¾¯£¬ÎÒÃǽ«³ÖÐø¸ú×ÙÈ«Çò×îеÄÍøÂ簲ȫÊÂÎñºÍ·ì϶£¬ÎªÆóÒµµÄÐÅÏ¢°²È«±£¼Ý»¤º½¡£

¹Ø×¢ÎÒÃÇ£º

image.png