[新闻] 20110328，微软关于针对其2月份发布的安全公告MS11-011问题的不准确报道的声明

微软已经收到了针对微软2月份发布的安全公告MS11-011问题的相关报道。我们已经对报道中的问题作了调查并得出结论该报道是不准确的。

此报道所描述的问题需要攻击者事先已经拥有对系统的管理员权限，即意味着已经对系统拥有完全的控制权限。当用户帐号被配置为较低的权限时则不受到该问题的影响。

Microsoft is aware of claims of problems with MS11-011, a security bulletin released by Microsoft in February. We have reviewed the claim and find it to be inaccurate. As described, the issue would require that an attacker already have Administrator-level permissions to the system – and thus, by definition, already have control of it. Users whose accounts are configured to have fewer user rights on the system are not vulnerable to the issue.

微软一直建议用户遵循“保护你的PC”中的指南将用户帐号配置为较低的权限，开启防火墙，安装所有软件更新，和安装反病毒和反间谍软件。更多的信息可以在https://www.microsoft.com/china/security/pypc.aspx中获取。

Microsoft continues to encourage customers to follow the “Protect Your Computer” guidance of configuring user accounts to have fewer rights on the system, enabling a firewall, applying all software updates, and installing anti-virus and anti-spyware software. Additional information can be found at: www.microsoft.com/protect.

微软大中华区安全团队