Специалисты Google опять рассказали об уязвимости в Windows до выхода патча.

Здесь может быть ваша реклама

В этом месяце компания Microsoft не выпустила запланированные на февраль патчи, то есть «вторник обновлений» был отложен до следующего месяца. Представители компании пояснили, что такое решение было продиктовано некими «проблемами, возникшими в последнюю минуту, которые могут затронуть некоторых пользователей». Однако это обстоятельно не помешало специалистам Google Project Zero раскрыть детали о новом баге.

Проблему обнаружили в Windows GDI (Graphics Device Interface, а именно — gdi32.dll). Данный интерфейс используется для представления графических объектов и передачи их на устройства отображения, такие, как мониторы и принтеры.

Согласно официальному отчету об ошибке, заполненному исследователями Project Zero, баг был обнаружен еще в марте 2016 года, наряду с другими проблемами. Большинство из найденных тогда уязвимостей были исправлены еще в июне 2016 года, с выходом бюллетеня безопасности MS16-074. Однако Матеуш Юрчик (Mateusz Jurczyk), обнаруживший изначальную проблему, заметил, что некоторые патчи из состава MS16-074 неэффективны, и некоторые уязвимости по-прежнему актуальны.

После проведения всех надлежащих проверок, в ноябре 2016 года, Юрчик написал новый отчет об ошибке, но на этот раз инженеры Microsoft не сумели устранить проблему за отведенные на это 90 дней. По истечении этого строка, специалисты Google имели право сообщить о баге публично, что они и поспешили сделать.

Старая-новая проблема имеет идентификатор CVE-2017-0038 и затрагивает ОС семейства Windows, начиная от Windows Vista Service Pack 2 и заканчивая Windows 10. Баг позволяет атакующим использовать метафайлы EMF для доступа к памяти и извлечения из нее информации. А в памяти атакующие могут обнаружить многое. Кроме того, проблема осложняется тем, что  вредоносный EMF-файл можно скрыть в обычном документе, а способов как-то защититься до выхода патча исследователь не обнаружил. Proof-of-concept такого файла исследователь приложил к отчету. Юрчик пишет:

«Я убедился, что уязвимость можно воспроизвести как локально, посредством Internet Explorer, так и удаленно, с помощью Office Online, используя .docx-документ, содержащий специально отредактированный EMF-файл».

Стоит отметить, что это уже не первый случай, когда исследователи Google опубликовали информацию об уязвимости до выхода патча. Так, в ноябре 2016 года эксперты компании рассказали о наличии критической 0-day уязвимости в ядре Windows, прежде чем разработчики Microsoft успели ее исправить. Тогда представители Microsoft резко осудили поступок исследователей, заявив, что «Google подвергла пользователей потенциальному риску».

Источник — xakep.ru

Sanders, who stars in the upcoming OWN reality series «Deion’s Family Playbook,» cheap jerseys recently sat down with Babyface to have a man to man conversation. «Deion’s a good guy,» Babyface says. He did this until they reached the North Sea, at which point Stigler gave the grateful Americans one last salute and returned back to base. Brown eventually landed safely in cheap oakleys Allied territory.. With Miracast, your TV or dongle is dependent on your Android device the entire time the devices are paired, for example, if your Android goes to sleep, your TV’s screen blacks out, too. This co dependency is a great advantage, but just remember to plug that thing in if you’re going to be a cheap authentic jerseys while.. The game of football is full of heroes. Choose to honor these football stars in a parade float. «I have very strong emotions regarding some of the many issues that exist in our society today. I chose to sit as an expression of my frustration towards this year’s election. «I think so many people know me as Stephanie and as that character, which is amazing and there’s been incredible support for it,» Sweetin said in an interview with People magazine on Tuesday. «But now I get to show people who I am and also, I kind of get to find out stuff about myself.». Cleveland went 4 3 this year against the wild card Blue Jays, who swept AL West champion Texas to reach the Wholesale NFL Jerseys ALCS for the second straight year. The Indians had not won a playoff series in nine years, when they beat the New York Yankees and then wasted a 3 1 lead over the Red Sox in the ALCS.. Additional disclosure: Investors are ray bans sale always reminded that before making any investment, you should do your own proper due diligence on any name directly or indirectly mentioned in this article. Investors should also consider seeking advice from a broker or financial adviser before making any investment decisions. And measuring 21 inches long.Credit: Pascal Le Segretain/Getty ImagesRob Kardashian and Blac Chyna Rob Kardashian and Blac Chyna welcomed their first child, a daughter named Dream, on Nov. 10, 2016.DJ Khaled and Nicole Tuck DJ Khaled and his fianc Nicole Tuck welcomed a baby boy on Oct. The NFL Jerseys Cheap Indy 500 has a grown from a one day race into more of a phenomenon. Even the locals tell you cheap nfl jerseys there’s something special about Indianapolis in the merry month of May. Woodrow Wilson did not learn the alphabet until an age of nine and was unable to read until an age of twelve. This shows that he probably had a learning disability..
how to complete golf scorecardsAdam lived with George and his mother Peggy, a devout Amritdhari Sikh who has become something of a fixture at Hollywood functions thanks to her trademark turban and flowing robes. Leo, meanwhile, divided his time between George and Irmelin, who moved into a small home two streets away. ‘I loved having a little brother, and we got along really well,’ Adam recalls. Apparently this is because touching our own wounds helps our bodies deal with pain as it allows our brains to better «map out» the part of our body the pain is coming from. The more information the brain gets about the actual location, Wholesale NFL Jerseys the better it can process and effectively deal with the pain. So actually, grabbing the afflicted area with two hands is the best option if you want it to feel better faster.. They also announced the acquisition of video streaming platform RayV for an undisclosed sum. RayV’s platform helps deliver high cheap nfl jerseys quality video streams to a cheap nfl jerseys large audience. Yahoo is expected to leverage RayV’s capabilities to continue their push in improving their digital media content and video streaming segment. Gwyneth Paltrow swears by fresh and organic foods to help keep her skin bright, refreshed and glowing. As well as consuming organic and fresh foods, she likes to drink lots of water and applies sunscreen regularly to protect her skin and cheap oakleys help it stay younger and firmer for longer. One of her biggest beauty secrets is continuing to take prenatal vitamins, even after her children Cheap NFL Authentic Jerseys were born because of what it did for her hair. For so long, of course, we were all complicit in ignoring how dangerous was America’s favorite game. All of us not just the coaches and players and fans, but no less the media and the team doctors, too. More recently, we’ve tended to excuse Cheap Jerseys the virtual cavalcade of criminal actions committed by players away from the gridiron. But through it all, Kardashian remained a loving father and a good friend. Met on a tennis court in 1969 and stayed friends for decades, sharing business interests as well as a love of the jet set lifestyle and the University of Southern California, where the former earned his bachelor’s degree and the latter earned his Heisman Trophy. Simpson was an usher at Kardashian’s 1978 wedding to Kris Houghton now better known as Kris cheap nfl jerseys Jenner and Kardashian was there in 1977 when Simpson met Nicole Brown, his future wife. You may need to proceed with the download again using Internet Explorer to ensure proper recognition of your software. The process may still provide a hiccup if your computer has not been updated with recent Active X controls. Remedy this problem by following the subsequent onscreen instructions on the Microsoft error page which will note this configuration issue..

Добавить комментарий

Ваш адрес email не будет опубликован. Обязательные поля помечены *