0x00 漏洞编号
0x01 危险等级
0x02 漏洞概述
Windows远程桌面许可管理服务被广泛部署于开启Windows远程桌面的服务器,用于管理远程桌面连接许可。
0x03 漏洞详情
CVE-2024-38077
漏洞类型: 远程代码执行
影响: 执行任意代码
简述: Windows远程桌面授权服务存在远程代码执行漏洞,未经授权的攻击者通过该漏洞可直接获取服务器最高权限,执行任意操作。
0x04 影响版本
Windows Server 2012 R2 (Server Core installation)
Windows Server 2012 R2
Windows Server 2012 (Server Core installation)
Windows Server 2012
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
Windows Server 2008 R2 for x64-based Systems Service Pack 1
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for x64-based Systems Service Pack 2
Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
Windows Server 2008 for 32-bit Systems Service Pack 2
Windows Server 2016 (Server Core installation)
Windows Server 2016
Windows Server 2022, 23H2 Edition (Server Core installation)
Windows Server 2022 (Server Core installation)
Windows Server 2022
Windows Server 2019 (Server Core installation)
Windows Server 2019
0x05 漏洞分析
https://sites.google.com/site/zhiniangpeng/blogs/MadLicense
0x06 修复建议
目前官方已发布漏洞修复版本,建议用户升级到安全版本 :
https://msrc.microsoft.com/update-guide/zh-cn/vulnerability/CVE-2024-38077
