1、破绽抽象开云kaiyun官方网站

近日，微软发布 windows 操作系统更新确立破绽，其中 Windows 文献资源管束器骗取破绽（CVE-2025-24071、CVE-2025-24054）正被平素哄骗，残暴您实时开展安全风险自查。

据神色，由于 windows 的资源管束器默许信任 libray-ms 文献，扶直读取此类文献进行渲染图标、缩略图和详备信息。当压缩包内存在此类文献时，用户解压包含 smb（文献分享职业）旅途设置的 libray-ms 文献，会自动被 windows 资源管束器内置文献贯通机制贯通，将受害者的 NTLM 身份信息发送到袭击者 smb 职业器。袭击者哄骗这种隐式信任和自动文献处理看成来知道把柄，然后不错哄骗这些把柄进行哈希传递袭击或脱机 NTLM 哈希破解。袭击者不错哄骗该破绽以管束员权限实践操作，包括但不限于创建新用户、修改现存用户的权限、装配坏心软件等。

破绽影响的居品和版块：

Windows Server 2022

Windows Server 2019 ( Server Core installation )

Windows Server 2019

Windows 10 Version 1809 for x64-based Systems

Windows 10 Version 1809 for 32-bit Systems

Windows Server 2012 R2 ( Server Core installation )

Windows Server 2012 R2

Windows Server 2016 ( Server Core installation )

Windows Server 2016

Windows 10 Version 1607 for x64-based Systems

Windows 10 Version 1607 for 32-bit Systems

Windows 10 for x64-based Systems

Windows 10 for 32-bit Systems

Windows Server 2025

Windows 11 Version 24H2 for x64-based Systems

Windows 11 Version 24H2 for ARM64-based Systems

Windows Server 2022, 23H2 Edition ( Server Core installation )

Windows 11 Version 23H2 for x64-based Systems

Windows 11 Version 23H2 for ARM64-based Systems

Windows Server 2025 ( Server Core installation )

Windows 10 Version 22H2 for 32-bit Systems

Windows 10 Version 22H2 for ARM64-based Systems

Windows 10 Version 22H2 for x64-based Systems

Windows 11 Version 22H2 for x64-based Systems

Windows 11 Version 22H2 for ARM64-based Systems

Windows 10 Version 21H2 for x64-based Systems

Windows 10 Version 21H2 for ARM64-based Systems

Windows 10 Version 21H2 for 32-bit Systems

Windows Server 2022 ( Server Core installation )

2、破绽复现

3、钞票测绘

4、处置决策

升级确立

当今 windows 已发布确立安全补丁：

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24071

5、参考集会

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2025-24054

https://www.ddpoc.com/DVB-2023-8999.html

原文集会开云kaiyun官方网站