【Microsoft已将以下漏洞分配给严重等级】

• CVE-2018-0758 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0762 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0767 - scripting Engine Information Disclosure Vulnerability

• CVE-2018-0769 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0770 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0772 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0773 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0774 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0775 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0776 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0777 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0778 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0780 - scripting Engine Information Disclosure Vulnerability

• CVE-2018-0781 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0797 - Microsoft Word Memory Corruption Vulnerability

• CVE-2018-0800 - scripting Engine Information Disclosure Vulnerability

【Microsoft已将以下漏洞分配给高危等级】

• CVE-2018-0741 - Microsoft Color Management Information Disclosure Vulnerability

• CVE-2018-0743 - Windows Subsystem for Linux Elevation of Privilege Vulnerability

• CVE-2018-0744 - Windows Elevation of Privilege Vulnerability

• CVE-2018-0745 - Windows Information Disclosure Vulnerability

• CVE-2018-0746 - Windows Information Disclosure Vulnerability

• CVE-2018-0747 - Windows Information Disclosure Vulnerability

• CVE-2018-0748 - Windows Elevation of Privilege Vulnerability

• CVE-2018-0749 - SMB Server Elevation of Privilege Vulnerability

• CVE-2018-0750 - Windows GDI Information Disclosure Vulnerability

• CVE-2018-0751 - Windows Elevation of Privilege Vulnerability

• CVE-2018-0752 - Windows Elevation of Privilege Vulnerability

• CVE-2018-0753 - Windows IPSec Denial of Service Vulnerability

• CVE-2018-0754 - ATMFD.dll Information Disclosure Vulnerability

• CVE-2018-0764 - .NET and .NET Core Denial Of Service Vulnerability

• CVE-2018-0766 - Microsoft Edge Information Disclosure Vulnerability

• CVE-2018-0768 - scripting Engine Memory Corruption Vulnerability

• CVE-2018-0784 - ASP.NET CoreElevation Of Privilege Vulnerability

• CVE-2018-0786 - .NET Security Feature Bypass Vulnerability

• CVE-2018-0788 - ATMFD.dll Information Disclosure Vulnerability

• CVE-2018-0789 - Microsoft Office Spoofing Vulnerability

• CVE-2018-0790 - Microsoft Office Information Disclosure Vulnerability

• CVE-2018-0791 - Microsoft Outlook Remote Code Execution Vulnerability

• CVE-2018-0792 - Microsoft Word Remote Code Execution

• CVE-2018-0793 - Microsoft Outlook Remote Code Execution

• CVE-2018-0794 - Microsoft Word Remote Code Execution

• CVE-2018-0795 - Microsoft Office Remote Code Execution

• CVE-2018-0796 - Microsoft Excel Remote Code Execution

• CVE-2018-0798 - Microsoft Word Memory Corruption Vulnerability

• CVE-2018-0799 - Microsoft Access Tampering Vulnerability

• CVE-2018-0801 - Microsoft Office Remote Code Execution Vulnerability

• CVE-2018-0802 - Microsoft Office Memory Corruption Vulnerability

• CVE-2018-0803 - Microsoft Edge Elevation of Privilege Vulnerability

• CVE-2018-0805 - Microsoft Word Remote Code Execution Vulnerability

• CVE-2018-0806 - Microsoft Word Remote Code Execution Vulnerability

• CVE-2018-0807 - Microsoft Word Remote Code Execution Vulnerability

• CVE-2018-0812 - Microsoft Word Memory Corruption Vulnerability

• CVE-2018-0818 - scripting Engine Security Feature Bypass

• CVE-2018-0819 - Spoofing Vulnerability in Microsoft Office for MAC

【Microsoft已将以下漏洞分配给中危等级】

• CVE-2018-0785 - ASP.NET Core Cross Site Request Forgery Vulnerability

【安全建议】

1. 根据业务情况选择更新补丁

2. 升级前，务必做好数据备份

信息来源http://blog.talosintelligence.com/2018/01/ms-tuesday.html