发布日期：2020-06-09
更新日期：2020-06-15

受影响系统：

Microsoft Windows Windows Server, version 2004 (
Microsoft Windows Windows Server, version 1909 (
Microsoft Windows Windows Server, version 1903 (
Microsoft Windows Windows Server 2019 (Server Co
Microsoft Windows Windows Server 2019
Microsoft Windows Windows 10 Version 2004 for x6
Microsoft Windows Windows 10 Version 2004 for AR
Microsoft Windows Windows 10 Version 2004 for 32
Microsoft Windows Windows 10 Version 1909 for x6
Microsoft Windows Windows 10 Version 1909 for AR
Microsoft Windows Windows 10 Version 1909 for 32
Microsoft Windows Windows 10 Version 1903 for x6
Microsoft Windows Windows 10 Version 1903 for AR
Microsoft Windows Windows 10 Version 1903 for 32
Microsoft Windows Windows 10 Version 1809 for x6
Microsoft Windows Windows 10 Version 1809 for AR
Microsoft Windows Windows 10 Version 1809 for 32

描述：

---

CVE(CAN) ID: CVE-2020-1244

Connected User Experiences and Telemetry Service是微软的故障诊断跟踪及反馈服务，可以自动运行并发送错误诊断信息给微软，以提升产品安全性及性能。

Connected User Experiences and Telemetry Service在处理文件操作中存在拒绝服务漏洞，通过运行构造的应用，攻击者利用此漏洞可以造成受影响系统停止响应。



<*来源：Zhiniang Peng  (@edwardzpeng)
  
  链接：https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Jun
*>

建议：

---

厂商补丁：

Microsoft
---------
Microsoft已经为此发布了一个安全公告（June 2020 Security Updates）以及相应补丁:

June 2020 Security Updates：June 2020 Security Updates
链接：https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/2020-Jun

补丁下载：
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4561608
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4560960
https://catalog.update.microsoft.com/v7/site/Search.aspx?q=KB4557957

浏览次数：788
严重程度：0（网友投票）