Umphandi wezokhuseleko ukhuphe ikhowudi yokuxhaphaza ye-zero-day ye Windows, ebizwa ngokuba yiBlueHammer. Isizathu sale ntshukumo ingaqhelekanga yayikukungqubana phakathi kwengcali kunye neMicrosoft Response Center (MSRC) malunga nendlela ulwazi alunikezileyo oluphathwa ngayo.
Umphandi osebenzisa igama elingelolakhe elithi Chaotic Eclipse upapashe ikhowudi yokuxhaphaza kwiGitHub ngo-Epreli 3. Umbhali ubonakalise ukudana yindlela abaphathi be-MSRC abaphatha ngayo ulwazi lwesiganeko awayelunike ngaphambili kwaye wala ukuchaza iinkcukacha zobugcisa zendlela yakhe yokutyhila ubuthathaka. Olu xhatshazo luvumela umhlaseli wasekuhlaleni ukuba andise amalungelo akhe kwi-SYSTEM okanye afumane amalungelo aphezulu olawulo. IMicrosoft ayikakhuphi uhlaziyo lokhuseleko, inika kuphela uluvo olufutshane malunga nokubaluleka kokutyhila ubuthathaka okudibeneyo.
UWill Dormann, umhlalutyi ophambili wokhuseleko eTharros, uqinisekisile ukusebenza kwale nkqubo. Ucacisile ukuba olu hlaselo luyinkqubo yokunyuka kwamalungelo asekuhlaleni edibanisa ubuthathaka beTime-of-Check to Time-of-Use (TOCTOU) kunye nokudideka kwendlela. Le ndlela intsonkothileyo inika umhlaseli ukufikelela kwisiseko sedatha seSecurity Account Manager (SAM), esigcina ii-hashes zegama lokungena leakhawunti yasekuhlaleni. Oku kuvumela umhlaseli ukuba asebenzise ishelufu yomyalelo enamalungelo aphezulu kwaye abeke engcupheni ngokupheleleyo ikhompyutha.
Kwangaxeshanye, umbhali wekhowudi yeChaotic Eclipse kunye nabavavanyi beqela lesithathu baphawula ukuba kukho iimpazamo kwi-exploit, nto leyo enokubangela ukuba ingazinzi. Ingakumbi, eqongeni. Windows Server Le khowudi ayiniki amalungelo apheleleyo enkqubo, kodwa iwaphakamisa nje kwinqanaba lomlawuli ngesiqinisekiso sokuqinisekisa. UDormann ucebisa ukuba ukucaphuka kombhali kusenokwenzeka ukuba kubangelwe yimfuneko enyanzelekileyo yeMicrosoft yokuncamathisela ividiyo ebonisa ukuqhekezwa.
Nangona ubuthathaka bufuna ukufikelela kwindawo yokuqala, abaphangi banokubufumana ngokulula kwangaphambili ngokusebenzisa ubunjineli bezentlalo okanye ezinye iziphene zesoftware.
umthombo:
umthombo: 3dnews.ru
