微软在十二月十八日发行额外安全补丁 (MS08-078)

  • Article

大家好, 我是 Richard Chen.

微软在十二月十八日清晨发行一个最高级别为严重的安全补丁, 用以修复已发现的 IE 的漏洞并可能被利用于远程攻击.
攻击成功者可以获取与目前登录的使用者相同权限.

严重级别:
MS08-078 Security Update for Internet Explorer (960714)

在此再次强调 MS08-078 为重大更新,企业客户及个人务必要尽快安装该安全补丁,以避免遭受感染或感染他人计算机。
若您需要手动下载补丁的链节为:

Operating System Component Maximum Security Impact Aggregate Severity Rating Bulletins Replaced by This Update
Internet Explorer 5.01 and Internet Explorer 6 Service Pack 1        

Microsoft Windows 2000 Service Pack 4

Microsoft Internet Explorer 5.01 Service Pack 4

Remote Code Execution

Critical

None

Microsoft Windows 2000 Service Pack 4

Microsoft Internet Explorer 6 Service Pack 1

Remote Code Execution

Critical

None
Internet Explorer 6        

Windows XP Service Pack 2 and Windows XP Service Pack 3

Microsoft Internet Explorer 6

Remote Code Execution

Critical

None

Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2

Microsoft Internet Explorer 6

Remote Code Execution

Critical

None

Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2

Microsoft Internet Explorer 6

Remote Code Execution

Critical

None

Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2

Microsoft Internet Explorer 6

Remote Code Execution

Critical

None

Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems

Microsoft Internet Explorer 6

Remote Code Execution

Critical

None
Internet Explorer 7        

Windows XP Service Pack 2 and Windows XP Service Pack 3

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows XP Professional x64 Edition and Windows XP Professional x64 Edition Service Pack 2

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Server 2003 Service Pack 1 and Windows Server 2003 Service Pack 2

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Server 2003 x64 Edition and Windows Server 2003 x64 Edition Service Pack 2

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Server 2003 with SP1 for Itanium-based Systems and Windows Server 2003 with SP2 for Itanium-based Systems

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Vista and Windows Vista Service Pack 1

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Vista x64 Edition and Windows Vista x64 Edition Service Pack 1

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Server 2008 for 32-bit Systems

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Server 2008 for x64-based Systems

Windows Internet Explorer 7

Remote Code Execution

Critical

None

Windows Server 2008 for Itanium-based Systems

Windows Internet Explorer 7

Remote Code Execution

Critical

None

IE8 Beta2 使用者可利用 Auto Update 或 Windows Update 侦测并安装。 

若您的计算机疑似感染该恶意程式则可以利用微软免费线上扫描工具查杀:
https://safety.live.com.

关于 MS08-078 详细资讯请参考该链节:

https://www.microsoft.com/china/technet/security/bulletin/ms08-078.mspx

您可以透以下链结订阅微软相关安全资讯:
https://www.microsoft.com/china/security/Newsletter/Newsletter01.mspx

Richard Chen
大中华区软件安全项目经理