漏洞概述
微步情报局今天监测到互联网上曝光了Windows Server 远程桌面授权服务(RDL)远程代码执行漏洞(CVE-2024-38077),经过确认,该漏洞微软已于7月9号修复,微步漏洞情报也已于当日(1个月前)收录了相关漏洞情报,具体详情请参考:
https://x.threatbook.com/v5/vul/XVE-2024-16782
Remote Desktop License (远程桌面授权) 服务是微软 Windows Server 操作系统中的一个重要组件,它负责管理和颁发 远程桌面服务客户端访问许可证 (RDS CAL)。 Remote Desktop License服务中存在一个堆溢出漏洞,成功利用该漏洞可造成远程代码执行。
漏洞影响范围
影响Windows Server 版本如下:
Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 (Server Core installation)
Windows Server 2012
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2016 (Server Core installation)
Windows Server 2016
Windows Server 2022, 23H2 Edition (Server Core installation)
Windows Server 2022 (Server Core installation)
Windows Server 2022
Windows Server 2019 (Server Core installation)
Windows Server 2019
漏洞修复
Security Update Guide - Microsoft Security Response Center
来自:
Windows Server 远程桌面授权服务 RDL曝高危漏洞