{"id":15898,"date":"2022-04-24T15:18:02","date_gmt":"2022-04-24T12:18:02","guid":{"rendered":"https:\/\/kutaybilen.com.tr\/?p=15898"},"modified":"2022-04-24T15:18:02","modified_gmt":"2022-04-24T12:18:02","slug":"windows-son-guncellemeyle-cok-kiymetli-bir-acigi-kapatti","status":"publish","type":"post","link":"https:\/\/kutaybilen.com.tr\/?p=15898","title":{"rendered":"Windows, Son G\u00fcncellemeyle \u00c7ok K\u0131ymetli Bir A\u00e7\u0131\u011f\u0131 Kapatt\u0131"},"content":{"rendered":"

Microsoft\u2019un Windows ayg\u0131tlara g\u00f6nderdi\u011fi son g\u00fcncelleme Windows 10 ve Windows Server\u2019daki \u00e7ok de\u011ferli bir a\u00e7\u0131\u011f\u0131 kapatmay\u0131 ama\u00e7lad\u0131. Hatta \u015firket, son g\u00f6nderilen g\u00fcvenlik g\u00fcncellemesiyle birlikte sadece bir a\u00e7\u0131\u011f\u0131 de\u011fil, toplamda 48 a\u00e7\u0131\u011f\u0131 kapatmay\u0131 ba\u015fard\u0131.<\/p>\n

Microsoft\u2019un kapatt\u0131\u011f\u0131 48 sistem a\u00e7\u0131\u011f\u0131ndan 5\u2019i \u015firketin \u2018Remote Desktop Protocol (RDP)<\/strong> tabanl\u0131 servisleriyle alakal\u0131yd\u0131. Bu a\u00e7\u0131klar bug\u00fcne kadar bir\u00e7ok ki\u015fi taraf\u0131ndan oburlar\u0131n\u0131n a\u011flar\u0131nda yer alan bilgisayarlara uzaktan eri\u015fim sa\u011flamak i\u00e7in kullan\u0131ld\u0131. \u0130ki a\u00e7\u0131k ise hackerlar\u0131n a\u011flara \u015fifre giri\u015fi yapmadan<\/strong> giri\u015f yapmas\u0131n\u0131 sa\u011fl\u0131yordu.<\/p>\n

Ke\u015ffedilen iki a\u00e7\u0131k, \u015fifre a\u00e7\u0131klar\u0131ndan bile daha tehlikeli:<\/b><\/p>\n

<\/p>\n

\u0130\u015fte CVE-2020-0609<\/strong> ve CVE-2020-0610<\/strong> olarak isimlendirilen bu a\u00e7\u0131klar, Microsoft taraf\u0131ndan \u015fifre a\u00e7\u0131klar\u0131ndan daha tehlikeli olarak derecelendirildi. Bunun sebebi ise bu a\u00e7\u0131\u011f\u0131 kullanan \u015fah\u0131slar\u0131n maksat RPD sunucular\u0131na rastgele bir onay almadan uzaktan eri\u015fim sa\u011flamalar\u0131n\u0131n \u00f6n\u00fcn\u00fc a\u00e7mas\u0131yd\u0131.<\/p>\n

Microsoft, Security Response Center\u2019da bu iki a\u00e7\u0131k hakk\u0131nda \u00e7ok \u00f6nemli ikazda bulundu. Microsoft\u2019un ikaz\u0131na nazaran bu a\u00e7\u0131k sayesinde bir \u015fah\u0131s bilgisayar\u0131n\u0131za program y\u00fckleyebilir<\/strong>, bilgileri g\u00f6r\u00fcnt\u00fcleyebilir, de\u011fi\u015ftirebilir ya da silebilir <\/strong>yahut t\u00fcm yetkilere sahip bir a\u00e7\u0131k a\u00e7abilir.<\/p>\n

A\u00e7\u0131ktan kurtulman\u0131n tek yolu g\u00fcncelleme yapmak:<\/b><\/p>\n

<\/p>\n

Bu a\u00e7\u0131ktan kurtulman\u0131n tek yolu ise Microsoft\u2019un Windows ayg\u0131tlara g\u00f6nderdi\u011fi son g\u00fcncellemeyi\u00a0<\/strong>bilgisayar\u0131n\u0131za y\u00fcklemek olacakt\u0131r. Her iki a\u00e7\u0131k da RPD protokol\u00fcn\u00fcn kullan\u0131lmas\u0131yla olu\u015fturulan Remote Desktop Gateway m\u00fcsaadelerini kullan\u0131yor.<\/p>\n

Microsoft\u2019un RDP protokol\u00fcnde kapatt\u0131\u011f\u0131 \u00f6b\u00fcr a\u00e7\u0131klar ortas\u0131nda Remote Desktop Web Access\u2019te<\/strong> ke\u015ffedilen bir a\u00e7\u0131k da bulunuyor. Bu a\u00e7\u0131k sayesinde size ziyan vermek isteyen \u015fah\u0131slar Web m\u00fcsaadelerini kullanarak kullan\u0131c\u0131lar\u0131n giri\u015f bilgilerini ele ge\u00e7irebiliyorlar.<\/p>\n

Microsoft\u2019un bahsetti\u011fi a\u00e7\u0131klar bilhassa eski sunucular i\u00e7in epeyce b\u00fcy\u00fck riskler ta\u015f\u0131yor. A\u00e7\u0131klar\u0131n k\u00f6kenleri de hayli derinde oldu\u011fundan Microsoft, son g\u00f6nderdi\u011fi g\u00fcncellemeyi eski i\u015fletim sistemi s\u00fcr\u00fcmlerine de g\u00f6ndermek zorunda kalabilir. 2019\u2019un may\u0131s ay\u0131nda \u015firket, ke\u015ffedilen bir a\u00e7\u0131\u011f\u0131n ne kadar \u00f6nemli oldu\u011funu Windows 10 ile birlikte Vista, Server 2003 ve hatta XP\u2019ye bile<\/strong> g\u00fcncelleme g\u00f6ndererek g\u00f6stermi\u015fti.<\/p>\n

<\/div>\n","protected":false},"excerpt":{"rendered":"

Microsoft\u2019un Windows ayg\u0131tlara g\u00f6nderdi\u011fi son g\u00fcncelleme Windows 10 ve Windows Server\u2019daki \u00e7ok de\u011ferli bir a\u00e7\u0131\u011f\u0131 kapatmay\u0131 ama\u00e7lad\u0131. Hatta \u015firket …<\/p>\n","protected":false},"author":1,"featured_media":15899,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":[],"categories":[854],"tags":[1532,915,938],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/15898"}],"collection":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=15898"}],"version-history":[{"count":1,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/15898\/revisions"}],"predecessor-version":[{"id":15900,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/posts\/15898\/revisions\/15900"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=\/wp\/v2\/media\/15899"}],"wp:attachment":[{"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=15898"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=15898"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/kutaybilen.com.tr\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=15898"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}