Klassifizierung
CVSS 3.1 | 9.8 |
Attack Vector | Network unauthenticated |
Impact | Remote Code Execution |
Betroffene Versionen
Alle Windows Versionen, welche IPv6 aktiv haben.
Workarounds
Deaktivierung von IPv6, sofern nicht benötigt.
Via GPO
GPedit -> Computerconfiguration -> Einstellungen -> Registrierung -> Neu -> Registrierungselement
HKLM\SYSTEM\CurrentControlSet\services\TCPIP6\Parameters
DisabledComponents
REG_DWORD
0xff
Via Registry
HKLM\SYSTEM\CurrentControlSet\services\TCPIP6\Parameters
DisabledComponents
REG_DWORD
Maßnahmen
Update Windows Operating Systems:
Operating System | Quick Update Link |
---|---|
Windows Server 2022 | Security Update |
Windows Server 2019 | Security Update |
Windows Server 2016 | Security Update |
Windows Server 2012 R2 | Monthly Rollup |
Windows Server 2008 R2 for x64-based Systems Service Pack 1 | |
Windows 11 Version 24H2 for x64-based Systems | Security Update |
Windows 10 Version 22H2 for x64-based Systems | Security Update |
IOCs
bisher keine
Quellen
https://msrc.microsoft.com/update-guide/vulnerability/CVE-2024-38063