KLA11850
Microsoft Advisory for Microsoft Device
Обновлено: 21/07/2020
Дата обнаружения
10/10/2017
Уровень угрозы
Warning
Описание

This advisory addresses CVE-2017-15361, also referred to as «Return of Coppersmith’s Attack» (ROCA).

A security vulnerability exists in certain Trusted Platform Module (TPM) chipsets. The vulnerability weakens key strength. It is important to note that this is a firmware vulnerability, and not a vulnerability in the operating system or a specific application. After you have installed software and/or firmware updates, you will need to re-enroll in any security services you are running to remediate those services. For more details contact the TPM manufacturer — https://www.infineon.com/TPM-update.

Пораженные продукты

Windows 10
Windows 8.1
Windows 7
Windows RT
Windows Server 2012
Windows Server 2016
Microsoft Surface Studio
Microsoft Surface Pro 4

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
ADV170012
Связанные продукты
Microsoft Windows Server
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows 10
Microsoft Surface
KB list

4023490
4023489

Microsoft official advisories
Microsoft Security Update Guide