Microsoft biztonsági frissítések – 2018. április

2018. április 11. 06:08

CH azonosító

CH-14401

Angol cím

Microsoft Security Updates - April 2018

Felfedezés dátuma

2018.04.09.

Súlyosság

Kritikus

Érintett rendszerek

Microsoft

Érintett verziók

Microsoft Edge
Internet Explorer 11
Internet Explorer 10
Internet Explorer 9

Windows 10 Version 1511 for 32-bit Systems
Windows 10 Version 1511 for x64-based Systems
Windows 10 for x64-based Systems
Windows 10 for 32-bit Systems
Windows 10 Version 1703 for x64-based Systems
Windows 10 Version 1703 for 32-bit Systems
Windows 10 Version 1709 for 32-bit Systems
Windows 10 Version 1709 for 64-based Systems
Windows Server, version 1709 (Server Core Installation)
Windows 10 Version 1607 for x64-based Systems
Windows 10 Version 1607 for 32-bit Systems

Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for Itanium-Based Systems Service Pack 2
Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)

Windows Server 2012
Windows Server 2012 R2
Windows Server 2012 (Server Core installation)
Windows Server 2012 R2 (Server Core installation)

Windows 8.1 for 32-bit systems
Windows 8.1 for x64-based systems
Windows RT 8.1

Windows 7 for x64-based Systems Service Pack 1
Windows 7 for 32-bit Systems Service Pack 1

Windows Server 2016
Windows Server 2016 (Server Core installation)

Microsoft Excel 2010 Service Pack 2 (64-bit editions)
Microsoft Excel 2010 Service Pack 2 (32-bit editions)
Microsoft Office Compatibility Pack Service Pack 3
Microsoft Office 2010 Service Pack 2 (32-bit editions)
Microsoft Office 2010 Service Pack 2 (64-bit editions)
Microsoft Word 2016 (32-bit edition)
Microsoft Word 2007 Service Pack 3
Microsoft Word 2013 Service Pack 1 (64-bit editions)
Microsoft Word 2010 Service Pack 2 (64-bit editions)
Microsoft Word 2010 Service Pack 2 (32-bit editions)
Microsoft Word 2013 Service Pack 1 (32-bit editions)
Microsoft Word 2013 RT Service Pack 1
Microsoft Word 2016 (64-bit edition)
Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions
Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions
Microsoft SharePoint Enterprise Server 2016
Microsoft SharePoint Enterprise Server 2013 Service Pack 1
Microsoft Office 2016 (32-bit edition)
Microsoft Office 2016 (64-bit edition)
Microsoft Excel 2013 RT Service Pack 1
Microsoft Excel 2013 Service Pack 1 (64-bit editions)
Microsoft Excel 2013 Service Pack 1 (32-bit editions)
Microsoft Office 2013 Service Pack 1 (64-bit editions)
Microsoft Office 2013 Service Pack 1 (32-bit editions)
Microsoft Office 2013 RT Service Pack 1
Microsoft Excel 2007 Service Pack 3
Microsoft Office Web Apps Server 2013 Service Pack 1
Microsoft Office Web Apps 2010 Service Pack 2
Microsoft SharePoint Server 2013 Service Pack 1
Microsoft Excel 2016 (32-bit edition)
Microsoft Excel Viewer 2007 Service Pack 3
Microsoft Excel 2016 (64-bit edition)
Microsoft Office 2016 for Mac
Microsoft Excel 2016 Click-to-Run (C2R) for 32-bit editions
Microsoft Excel 2016 Click-to-Run (C2R) for 64-bit editions
Microsoft SharePoint Server 2010 Service Pack 2
Excel Services
Word Automation Services

Microsoft Visual Studio 2015 Update 3
Microsoft Visual Studio 2017
Microsoft Visual Studio 2017 Version 15.7 Preview
Microsoft Visual Studio 2013 Update 5
Microsoft Visual Studio 2010 Service Pack 1
Microsoft Visual Studio 2012 Update 5
Microsoft Visual Studio 2017 Version 15.6.6

Microsoft Wireless Keyboard 850

Összefoglaló

A Microsoft szoftverek számos sérülékenységét jelentették, melyeket kihasználva a támadók bizalmas információhoz férhetnek hozzá, szolgáltatásmegtagadást idézhetnek elő, emelt szintű jogosultságokat szerezhetnek, megkerülhetik a biztonsági szabályokat, vagy tetszőleges kódot futtathatnak az áldozat rendszerén.