{"id":9036,"date":"2021-04-27T12:01:23","date_gmt":"2021-04-27T08:01:23","guid":{"rendered":"https:\/\/me.kaspersky.com\/blog\/?p=9036"},"modified":"2021-04-27T12:01:23","modified_gmt":"2021-04-27T08:01:23","slug":"cve-2021-28310","status":"publish","type":"post","link":"https:\/\/me.kaspersky.com\/blog\/cve-2021-28310\/9036\/","title":{"rendered":"CVE-2021-28310: \u0646\u0627\u0641\u0630\u0629 \u0645\u0643\u0633\u0648\u0631\u0629"},"content":{"rendered":"<p style=\"text-align: right\"><a href=\"https:\/\/securelist.com\/zero-day-vulnerability-in-desktop-window-manager-cve-2021-28310-used-in-the-wild\/101898\/\" target=\"_blank\" rel=\"noopener\">\u0627\u0643\u062a\u0634\u0641<\/a> \u0628\u0627\u062d\u062b\u0648 \u0643\u0627\u0633\u0628\u0631\u0633\u0643\u064a \u0623\u0646 \u0645\u0643\u0648\u0646 \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0644\u0644\u0647\u062c\u0648\u0645 \u062f\u0648\u0646 \u0627\u0646\u062a\u0638\u0627\u0631 (CVE-2021-28310) \u0641\u064a \u0646\u0638\u0627\u0645 \u0627\u0644\u062a\u0634\u063a\u064a\u0644 Microsoft Windows \u064a\u064f\u0637\u0644\u0642 \u0639\u0644\u064a\u0647 \u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 (DWM). \u0646\u0639\u062a\u0642\u062f \u0623\u0646 \u0627\u0644\u0639\u062f\u064a\u062f \u0645\u0646 \u0627\u0644\u062c\u0647\u0627\u062a \u0627\u0644\u062a\u064a \u0642\u0627\u0645\u062a \u0628\u0627\u0644\u062a\u0647\u062f\u064a\u062f \u0642\u062f \u0627\u0633\u062a\u063a\u0644\u062a \u0628\u0627\u0644\u0641\u0639\u0644 \u062a\u0644\u0643 \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629. \u0641\u0623\u0635\u062f\u0631\u062a Microsoft \u0644\u062a\u0648\u0647\u0627 \u062a\u0637\u0628\u064a\u0642 \u0627\u0644\u062a\u0635\u062d\u064a\u062d\u060c \u0627\u0644\u0630\u064a \u0646\u0648\u0635\u064a \u0628\u0627\u0633\u062a\u062e\u062f\u0627\u0645\u0647 \u0639\u0644\u0649 \u0627\u0644\u0641\u0648\u0631. \u0625\u0644\u064a\u0643\u0645 \u0627\u0644\u0633\u0628\u0628.<\/p>\n<h2 style=\"text-align: right\">\u0645\u0627 \u0627\u0644\u0645\u0642\u0635\u0648\u062f \u0628\u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 DWM))\u061f<\/h2>\n<p style=\"text-align: right\">\u0628\u0634\u0643\u0644\u064d \u0623\u0633\u0627\u0633\u064a\u060c \u064a\u0628\u062f\u0648 \u0623\u0646 \u0627\u0644\u062c\u0645\u064a\u0639 \u0639\u0644\u0649 \u062f\u0631\u0627\u064a\u0629 \u0628\u0627\u0644\u0648\u0627\u062c\u0647\u0629 \u0630\u0627\u062a \u0627\u0644\u0646\u0648\u0627\u0641\u0630 \u0644\u0623\u0646\u0638\u0645\u0629 \u0627\u0644\u062a\u0634\u063a\u064a\u0644 \u0627\u0644\u062d\u062f\u064a\u062b\u0629: \u0641\u062a\u062d \u0643\u0644 \u0628\u0631\u0646\u0627\u0645\u062c \u0641\u064a \u0646\u0627\u0641\u0630\u0629 \u0645\u0646\u0641\u0635\u0644\u0629 \u0644\u0627 \u062a\u0634\u063a\u0644 \u0628\u0627\u0644\u0636\u0631\u0648\u0631\u0629 \u0627\u0644\u0634\u0627\u0634\u0629 \u0628\u0623\u0643\u0645\u0644\u0647\u0627. \u0648\u0642\u062f \u062a\u062a\u062f\u0627\u062e\u0644 \u0627\u0644\u0646\u0648\u0627\u0641\u0630 \u0645\u0639\u064b\u0627\u061b \u0641\u0639\u0644\u0649 \u0633\u0628\u064a\u0644 \u0627\u0644\u0645\u062b\u0627\u0644\u060c \u0633\u062a\u062c\u062f \u0646\u0627\u0641\u0630\u0629\u064b \u062a\u0644\u0642\u064a \u0628\u0638\u0644\u0627\u0644\u0647\u0627 \u0639\u0644\u0649 \u0627\u0644\u0646\u0648\u0627\u0641\u0630 \u0627\u0644\u0623\u062e\u0631\u0649 \u0643\u0645\u0627 \u0644\u0648 \u0643\u0627\u0646\u062a \u062a\u062d\u062c\u0628 \u0627\u0644\u0636\u0648\u0621 \u0641\u0639\u0644\u064a\u064b\u0627 \u0639\u0646\u0647\u0627. \u0648\u0641\u064a \u0646\u0638\u0627\u0645 \u0627\u0644\u062a\u0634\u063a\u064a\u0644 Microsoft Windows\u061b \u064a\u0643\u0648\u0646 \u0627\u0644\u0645\u0643\u0648\u0651\u0646 \u0627\u0644\u0645\u0633\u0624\u0648\u0644 \u0639\u0646 \u0639\u0631\u0636 \u0645\u0632\u0627\u064a\u0627 \u0645\u062b\u0644 \u0627\u0644\u0638\u0644\u0627\u0644 \u0648\u0627\u0644\u0634\u0641\u0627\u0641\u064a\u0629 \u0647\u0648 \u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 (DWM).<\/p>\n<p style=\"text-align: right\">\u0644\u0641\u0647\u0645 \u0633\u0628\u0628 \u0623\u0647\u0645\u064a\u0629 \u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 (DWM) \u0641\u064a \u0633\u064a\u0627\u0642 \u0627\u0644\u0623\u0645\u0646 \u0627\u0644\u0633\u064a\u0628\u0631\u0627\u0646\u064a\u061b \u0636\u0639 \u0641\u064a \u0627\u0639\u062a\u0628\u0627\u0631\u0643 \u0623\u0646 \u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0644\u0627 \u062a\u0631\u0633\u0645 \u0646\u0648\u0627\u0641\u0630\u0647\u0627 \u0639\u0644\u0649 \u0627\u0644\u0634\u0627\u0634\u0629 \u0641\u062d\u0633\u0628\u061b \u0628\u0644 \u062a\u0636\u0639 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0627\u0644\u0636\u0631\u0648\u0631\u064a\u0629 \u0623\u064a\u0636\u064b\u0627 \u0641\u064a \u0645\u062e\u0632\u0646 \u0645\u0624\u0642\u062a. \u064a\u0623\u062e\u0630 \u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 (DWM) \u0628\u062f\u0648\u0631\u0647 \u0647\u0630\u0647 \u0627\u0644\u0645\u0639\u0644\u0648\u0645\u0627\u062a \u0645\u0646 \u0627\u0644\u0645\u062e\u0632\u0646 \u0627\u0644\u0645\u0624\u0642\u062a \u0644\u0643\u0644 \u0628\u0631\u0646\u0627\u0645\u062c \u0648\u064a\u0646\u0634\u0626 \u0627\u0644\u0639\u0631\u0636 \u0627\u0644\u062a\u062c\u0645\u064a\u0639\u064a \u0627\u0644\u0639\u0627\u0645 \u0627\u0644\u0630\u064a \u064a\u0631\u0627\u0647 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645. \u0648\u0639\u0646\u062f\u0645\u0627 \u064a\u0642\u0648\u0645 \u0627\u0644\u0645\u0633\u062a\u062e\u062f\u0645 \u0628\u062a\u062d\u0631\u064a\u0643 \u0646\u0627\u0641\u0630\u0629 \u0641\u0648\u0642 \u0627\u0644\u0623\u062e\u0631\u0649\u060c \u0644\u0627 \u062a\u0639\u0631\u0641 \u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0627\u0644\u0645\u0641\u062a\u0648\u062d\u0629 \u0623\u064a \u0634\u064a\u0621 \u062d\u0648\u0644 \u0645\u0627 \u0625\u0630\u0627 \u0643\u0627\u0646\u062a \u0646\u0648\u0627\u0641\u0630\u0647\u0627 \u0645\u062b\u0644\u064b\u0627 \u064a\u062c\u0628 \u0623\u0646 \u062a\u0644\u0642\u064a \u0638\u0644\u064b\u0627 \u0623\u0648 \u064a\u0643\u0648\u0646 \u0644\u0647\u0627 \u0638\u0644 \u0639\u0644\u0649 \u062a\u0644\u0643 \u0627\u0644\u0628\u0631\u0627\u0645\u062c \u0623\u0648 \u0644\u0627. \u064a\u0642\u0648\u0645 \u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 (DWM) \u0628\u0647\u0630\u0647 \u0627\u0644\u0645\u0647\u0645\u0629\u060c \u0648\u0639\u0644\u0649 \u0647\u0630\u0627 \u0627\u0644\u0646\u062d\u0648 \u062a\u0634\u0643\u0644 \u0647\u0630\u0647 \u0627\u0644\u0645\u0647\u0645\u0629 \u062e\u062f\u0645\u0629\u064b \u0631\u0626\u064a\u0633\u064a\u0629\u064b \u0641\u064a \u0646\u0638\u0627\u0645 \u0627\u0644\u062a\u0634\u063a\u064a\u0644 Windows \u0634\u0647\u062f\u062a\u0647\u0627 \u062c\u0645\u064a\u0639 \u0625\u0635\u062f\u0627\u0631\u0627\u062a\u0647 \u0628\u062f\u0621\u064b\u0627 \u0645\u0646 Vista \u2013 \u0648\u0644\u0627 \u064a\u0645\u0643\u0646 \u0625\u0644\u063a\u0627\u0621 \u062a\u0646\u0634\u064a\u0637\u0647\u0627 \u0641\u064a Windows 8\u060c \u0623\u0648 \u0627\u0644\u0625\u0635\u062f\u0627\u0631\u0627\u062a \u0627\u0644\u0623\u062d\u062f\u062b.<\/p>\n<h2 style=\"text-align: right\">\u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0628\u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 (DWM)<\/h2>\n<p style=\"text-align: right\">\u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0627\u0644\u062a\u064a \u0627\u0643\u062a\u0634\u0641\u062a\u0647\u0627 \u062a\u0642\u0646\u064a\u062a\u0646\u0627 \u0627\u0644\u0645\u062a\u0642\u062f\u0645\u0629 \u0644\u0645\u0646\u0639 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 \u0627\u0644\u062b\u063a\u0631\u0627\u062a \u0647\u064a <a href=\"https:\/\/encyclopedia.kaspersky.com\/glossary\/privilege-escalation\/\" target=\"_blank\" rel=\"noopener\">\u062b\u063a\u0631\u0629 \u062a\u062e\u0637\u064a \u0627\u0644\u0635\u0644\u0627\u062d\u064a\u0627\u062a<\/a>. \u0648\u0647\u0630\u0627 \u064a\u0639\u0646\u064a \u0623\u0646 \u0627\u0644\u0628\u0631\u0646\u0627\u0645\u062c \u0642\u062f \u064a\u062e\u0627\u062f\u0639 \u0645\u062f\u064a\u0631 \u0646\u0648\u0627\u0641\u0630 \u0633\u0637\u062d \u0627\u0644\u0645\u0643\u062a\u0628 (DWM) \u0644\u0645\u0646\u062d\u0647 \u062d\u0642 \u0627\u0644\u0648\u0635\u0648\u0644 \u0627\u0644\u0630\u064a \u0644\u0627 \u064a\u0646\u0628\u063a\u064a \u0623\u0646 \u064a\u062a\u0645\u062a\u0639 \u0628\u0647. \u0641\u064a \u0647\u0630\u0647 \u0627\u0644\u062d\u0627\u0644\u0629\u060c \u0633\u0645\u062d\u062a \u062a\u0644\u0643 \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0644\u0644\u0645\u0647\u0627\u062c\u0645\u064a\u0646 \u0628\u062a\u0634\u063a\u064a\u0644 \u0631\u0645\u0632 \u0639\u0634\u0648\u0627\u0626\u064a \u0639\u0644\u0649 \u0623\u062c\u0647\u0632\u0629 \u0627\u0644\u0636\u062d\u0627\u064a\u0627 \u2013 \u0648\u0645\u0646\u062d\u062a\u0647\u0645 \u0641\u064a \u0627\u0644\u0623\u0633\u0627\u0633 \u0633\u064a\u0637\u0631\u0629\u064b \u0643\u0627\u0645\u0644\u0629\u064b \u0639\u0644\u0649 \u0623\u062c\u0647\u0632\u0629 \u0627\u0644\u0643\u0645\u0628\u064a\u0648\u062a\u0631.<\/p>\n<h2 style=\"text-align: right\">\u0643\u064a\u0641\u064a\u0629 \u062a\u062c\u0646\u0628 \u0627\u0633\u062a\u063a\u0644\u0627\u0644 (CVE-2021-28310)<\/h2>\n<p style=\"text-align: right\">\u0645\u0646 \u0627\u0644\u0623\u0647\u0645\u064a\u0629 \u0627\u0644\u062a\u0635\u0631\u0641 \u0628\u0633\u0631\u0639\u0629. \u0625\u0644\u064a\u0643 \u0645\u0627 \u064a\u0645\u0643\u0646\u0643 \u0641\u0639\u0644\u0647:<\/p>\n<ul style=\"text-align: right\">\n<li>\u0642\u0645 \u0628\u062a\u062b\u0628\u064a\u062a <a href=\"https:\/\/msrc.microsoft.com\/update-guide\/vulnerability\/CVE-2021-28310\" target=\"_blank\" rel=\"noopener nofollow\">\u0627\u0644\u062a\u0635\u062d\u064a\u062d\u0627\u062a \u0627\u0644\u062a\u064a \u0623\u0635\u062f\u0631\u062a\u0647\u0627 \u0634\u0631\u0643\u0629 Microsoft \u0628\u062a\u0627\u0631\u064a\u062e 13 \u0623\u0628\u0631\u064a\u0644<\/a>\u060c \u0639\u0644\u0649 \u0627\u0644\u0641\u0648\u0631 \u0639\u0644\u0649 \u062c\u0645\u064a\u0639 \u0623\u062c\u0647\u0632\u0629 \u0627\u0644\u0643\u0645\u0628\u064a\u0648\u062a\u0631 \u0627\u0644\u0645\u0639\u0631\u0636\u0629 \u0644\u0644\u062e\u0637\u0631\u061b<\/li>\n<li>\u0627\u062d\u0631\u0635 \u0639\u0644\u0649 \u062d\u0645\u0627\u064a\u0629 \u062c\u0645\u064a\u0639 \u0623\u062c\u0647\u0632\u062a\u0643 \u0628\u0627\u0644\u0627\u0633\u062a\u0639\u0627\u0646\u0629 \u0628\u062d\u0644 \u0623\u0645\u0627\u0646 \u0642\u0648\u064a \u0645\u062b\u0644\u00a0 <a href=\"https:\/\/me.kaspersky.com\/small-to-medium-business-security?icid=me-ar_kdailyplacehold_acq_ona_smm__onl_b2b_kasperskydaily_wpplaceholder_______\" target=\"_blank\" rel=\"noopener\">Kaspersky Endpoint Security for Business<\/a>\u00a0 \u060c \u0627\u0644\u0630\u064a \u064a\u0642\u062f\u0645 \u0645\u0643\u0648\u0646\u064b\u0627 \u0645\u062a\u0642\u062f\u0645\u064b\u0627 \u0644\u0645\u0646\u0639 \u0645\u062d\u0627\u0648\u0644\u0627\u062a \u0627\u0633\u062a\u063a\u0644\u0627\u0644 CVE-2021-28310.<\/li>\n<\/ul>\n<p style=\"text-align: right\"><input type=\"hidden\" class=\"category_for_banner\" value=\"kesb\"><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\u064a\u0639\u062a\u0642\u062f \u062e\u0628\u0631\u0627\u0621 \u0643\u0627\u0633\u0628\u0631\u0633\u0643\u064a \u0623\u0646 CVE-2021-28310 -\u0627\u0644\u062a\u064a \u062a\u0645\u062b\u0644 \u0627\u0644\u062b\u063a\u0631\u0629 \u0627\u0644\u0623\u0645\u0646\u064a\u0629 \u0644\u0644\u0647\u062c\u0648\u0645 \u062f\u0648\u0646 \u0627\u0646\u062a\u0638\u0627\u0631 -\u0641\u064a \u0646\u0638\u0627\u0645 \u0627\u0644\u062a\u0634\u063a\u064a\u0644 Microsoft Windows- \u0631\u0628\u0645\u0627 \u0642\u062f \u062a\u0645 \u0627\u0633\u062a\u063a\u0644\u0627\u0644\u0647\u0627 \u0628\u0627\u0644\u0641\u0639\u0644 \u0641\u064a \u0627\u0644\u0647\u062c\u0648\u0645.<\/p>\n","protected":false},"author":2581,"featured_media":9041,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[892,5,631,748],"tags":[1588,1288,1279,1308,777],"class_list":{"0":"post-9036","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-enterprise","8":"category-news","9":"category-business","10":"category-threats","11":"tag-cve","12":"tag-microsoft","13":"tag-windows","14":"tag-1308","15":"tag-777"},"hreflang":[{"hreflang":"ar","url":"https:\/\/me.kaspersky.com\/blog\/cve-2021-28310\/9036\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/cve-2021-28310\/22719\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/cve-2021-28310\/18200\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/cve-2021-28310\/24553\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/cve-2021-28310\/22581\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/cve-2021-28310\/21634\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/cve-2021-28310\/25057\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/cve-2021-28310\/24383\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/cve-2021-28310\/30513\/"},{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/cve-2021-28310\/9524\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/cve-2021-28310\/39352\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/cve-2021-28310\/16754\/"},{"hreflang":"pt-br","url":"https:\/\/www.kaspersky.com.br\/blog\/cve-2021-28310\/17310\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/cve-2021-28310\/26518\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/cve-2021-28310\/30464\/"},{"hreflang":"nl","url":"https:\/\/www.kaspersky.nl\/blog\/cve-2021-28310\/26903\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/cve-2021-28310\/23747\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/cve-2021-28310\/29092\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/cve-2021-28310\/28890\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/me.kaspersky.com\/blog\/tag\/%d8%ab%d8%ba%d8%b1%d8%a7%d8%aa-%d8%a7%d9%85%d9%86%d9%8a%d8%a9\/","name":"\u062b\u063a\u0631\u0627\u062a \u0627\u0645\u0646\u064a\u0629"},"_links":{"self":[{"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/9036","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/users\/2581"}],"replies":[{"embeddable":true,"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/comments?post=9036"}],"version-history":[{"count":3,"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/9036\/revisions"}],"predecessor-version":[{"id":9042,"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/posts\/9036\/revisions\/9042"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/media\/9041"}],"wp:attachment":[{"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/media?parent=9036"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/categories?post=9036"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/me.kaspersky.com\/blog\/wp-json\/wp\/v2\/tags?post=9036"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}