一、漏洞详情
Windows Agere调制解调器驱动程序是一个用于控制调制解调器硬件的程序,该驱动程序的主要功能是实现数字信号与模拟信号的相互转换,从而支持通过电话线拨号接入互联网。
近日,监测到微软发布安全更新修复Windows Agere调制解调器驱动程序权限提升漏洞(CVE-2025-24990),该漏洞源于驱动程序的IOCTL调用中未验证用户输入的指针地址。攻击者可以通过构造恶意IOCTL请求,绕过内核地址空间布局随机化(kASLR),并通过未初始化的指针覆盖内核地址空间中的关键数据结构,攻击者可以利用该漏洞提升权限至管理员级别。
建议受影响用户做好资产自查以及预防工作,以免遭受黑客攻击。
二、影响范围
Windows Server 2025 (Server Core installation) < 10.0.26100.6899
Windows Server 2025 < 10.0.26100.6899
Windows Server 2022, 23H2 Edition (Server Core installation) < 10.0.25398.1913
Windows Server 2022 (Server Core installation) < 10.0.20348.4294
Windows Server 2022 < 10.0.20348.4294
Windows Server 2019 (Server Core installation) < 10.0.17763.7919
Windows Server 2019 < 10.0.17763.7919
Windows Server 2016 (Server Core installation) < 10.0.14393.8519
Windows Server 2016 < 10.0.14393.8519
Windows Server 2012 R2 (Server Core installation) < 6.3.9600.22824
Windows Server 2012 R2 < 6.3.9600.22824
Windows Server 2012 (Server Core installation) < 6.2.9200.25722
Windows Server 2012 < 6.2.9200.25722
Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation) < 6.1.7601.27974
Windows Server 2008 R2 for x64-based Systems Service Pack 1 < 6.1.7601.27974
Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation) < 6.0.6003.23571
Windows Server 2008 for x64-based Systems Service Pack 2 < 6.0.6003.23571
Windows 11 Version 25H2 for x64-based Systems < 10.0.26200.6899
Windows 11 Version 24H2 for x64-based Systems < 10.0.26100.6899
Windows 11 Version 23H2 for x64-based Systems < 10.0.22631.6060
Windows 11 Version 22H2 for x64-based Systems < 10.0.22621.6060
Windows 10 Version 22H2 for x64-based Systems < 10.0.19045.6456
Windows 10 Version 21H2 for x64-based Systems < 10.0.19044.6456
Windows 10 Version 1809 for x64-based Systems < 10.0.17763.7919
Windows 10 Version 1607 for x64-based Systems < 10.0.14393.8519
Windows 10 for x64-based Systems < 10.0.10240.21161
三、修复建议
官方下载相应补丁进行更新。
