这表明可能存在针对 Microsoft 服务器消息块 (SMB) 协议中未经身份验证的远程代码执行漏洞的攻击。该漏洞是由于对用户提供的输入处理不当造成的。远程攻击者可以通过向易受攻击的 SMB 服务器发送精心制作的 SMB 数据包来利用此漏洞。成功的利用允许执行任意代码。

Windows XP Service Pack 3 Windows XP Professional x64 Edition Service Pack 2 Windows Server 2003 Service Pack 2 Windows Server 2003 x64 Edition Service Pack 2 Windows Server 2003 with SP2 for Itanium-based Systems Windows Vista Service Pack 1 and Windows Vista Service Pack 2 Windows Vista x64 Edition Service Pack 1 and Windows Vista x64 Edition Service Pack 2 Windows Server 2008 for 32-bit Systems and Windows Server 2008 for 32-bit Systems Service Pack 2 Windows Server 2008 for x64-based Systems and Windows Server 2008 for x64-based Systems Service Pack 2 Windows Server 2008 for Itanium-based Systems and Windows Server 2008 for Itanium-based Systems Service Pack 2 Windows 7 for 32-bit Systems Windows 7 for x64-based Systems Windows Server 2008 R2 for x64-based Systems Windows Server 2008 R2 for Itanium-based Systems

系统被入侵

有关更新，请参阅以下 Microsoft 公告：http://www.microsoft.com/technet/security/Bulletin/ms10-054.mspx