KLA11891
Microsoft Advisory for Microsoft Products (ESU)

Обновлено: 14/08/2020
Дата обнаружения
13/06/2018
Уровень угрозы
Warning
Описание

Microsoft released an advisory and security updates related to a newly-discovered class of hardware vulnerabilities (known as Spectre and Meltdown). An additional vulnerability involving side channel speculative execution has been announced and assigned CVE-2018-3665.

An attacker locally could cause information stored in FP (Floating Point), MMX, and SSE register state to be disclosed across security boundaries on Intel Core family CPUs through speculative execution. An attacker must be able to execute code locally on a system in order to exploit this vulnerability, similar to the other speculative execution vulnerabilities.

Пораженные продукты

Windows 10
Windows 8
Windows 7
Windows Server 2008
Windows Server 2012

Решение

Install necessary updates from the KB section, that are listed in your Windows Update (Windows Update usually can be accessed from the Control Panel)

Первичный источник обнаружения
ADV180016
Связанные продукты
Microsoft Windows
Microsoft Windows Server
Microsoft Windows Server 2012
Microsoft Windows 8
Microsoft Windows 7
Microsoft Windows Server 2008
Microsoft Windows 10
KB list

4338818
4338823
4345459
4338821
4343899
4343900
4341832