发布日期：2021-01-12
更新日期：2021-01-13

受影响系统：

Microsoft Security Essentials
Microsoft System Center 2012 R2 Endpoint Protection
Microsoft System Center 2012 Endpoint Protection
Microsoft Defender Windows Server 2008 R2 for x64
Microsoft Defender Windows Server 2008 R2 for x64
Microsoft Defender on Windows Server, version 20H
Microsoft Defender on Windows Server, version 200
Microsoft Defender on Windows Server, version 190
Microsoft Defender on Windows Server 2019  (Serve
Microsoft Defender on Windows Server 2019
Microsoft Defender on Windows Server 2016  (Serve
Microsoft Defender on Windows Server 2016
Microsoft Defender on Windows Server 2012 R2 (Ser
Microsoft Defender on Windows Server 2012 R2
Microsoft Defender on Windows Server 2012 (Server
Microsoft Defender on Windows Server 2012
Microsoft Defender on Windows Server 2008 for 32-
Microsoft Defender on Windows Server 2008 for 32-
Microsoft Defender on Windows RT 8.1
Microsoft Defender on Windows 8.1 for x64-based s
Microsoft Defender on Windows 8.1 for 32-bit syst
Microsoft Defender on Windows 7 for x64-based Sys
Microsoft Defender on Windows 7 for 32-bit System
Microsoft Defender on Windows 10 Version 20H2 for
Microsoft Defender on Windows 10 Version 20H2 for
Microsoft Defender on Windows 10 Version 20H2 for
Microsoft Defender on Windows 10 Version 2004 for
Microsoft Defender on Windows 10 Version 2004 for
Microsoft Defender on Windows 10 Version 2004 for
Microsoft Defender on Windows 10 Version 1909 for
Microsoft Defender on Windows 10 Version 1909 for
Microsoft Defender on Windows 10 Version 1909 for
Microsoft Defender on Windows 10 Version 1809 for
Microsoft Defender on Windows 10 Version 1809 for
Microsoft Defender on Windows 10 Version 1809 for
Microsoft Defender on Windows 10 Version 1803 for
Microsoft Defender on Windows 10 Version 1803 for
Microsoft Defender on Windows 10 Version 1803 for
Microsoft Defender on Windows 10 Version 1607 for
Microsoft Defender on Windows 10 Version 1607 for
Microsoft Defender on Windows 10 for x64-based Sy
Microsoft Defender on Windows 10 for 32-bit Syste

描述：

---

CVE(CAN) ID: CVE-2021-1647

Microsoft Windows是一款由美国微软公司开发的窗口化操作系统。
Microsoft Defender存在远程代码执行漏洞。攻击者可利用该漏洞在目标主机上执行代码。

<**>

建议：

---

厂商补丁：

Microsoft
---------
Microsoft已经为此发布了一个安全公告 (CVE-2021-1647) 以及相应补丁:CVE-2021-1647: Microsoft Defender Remote Code Execution Vulnerability.
链接： https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2021-1647

浏览次数：940
严重程度：0（网友投票）