{"id":5779,"date":"2019-03-15T17:07:27","date_gmt":"2019-03-15T14:07:27","guid":{"rendered":"https:\/\/www.kaspersky.com.tr\/blog\/?p=5779"},"modified":"2019-11-15T14:31:52","modified_gmt":"2019-11-15T11:31:52","slug":"cve-2019-0797-vulnerability-detected","status":"publish","type":"post","link":"https:\/\/www.kaspersky.com.tr\/blog\/cve-2019-0797-vulnerability-detected\/5779\/","title":{"rendered":"CVE-2019-0797: S\u0131f\u0131r g\u00fcn a\u00e7\u0131klar\u0131 bitmiyor"},"content":{"rendered":"<p>S\u0131k\u0131c\u0131 bir blog gibi g\u00f6r\u00fcnme riskini g\u00f6ze alarak, buldu\u011fumuz son s\u0131f\u0131r g\u00fcn a\u00e7\u0131\u011f\u0131ndan \u00fc\u00e7 ay sonra proaktif teknolojilerimizin bir Windows g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 daha ortaya \u00e7\u0131kard\u0131\u011f\u0131n\u0131 <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/cve-2018-8589-vulnerability-detected\/5404\/\" target=\"_blank\" rel=\"noopener\">belirtmemiz gerekiyor<\/a>. Bu sefer g\u00fcvenlik a\u00e7\u0131\u011f\u0131, i\u015fletim sisteminin bir\u00e7ok s\u00fcr\u00fcm\u00fcn\u00fc etkiliyor: 64 bit Windows 8 ve 10 (15063 s\u00fcr\u00fcm\u00fcne kadar), tehlike alt\u0131ndad\u0131r. Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 derhal Microsoft\u2019a bildirdik ve Microsoft, 12 Mart tarihinde yay\u0131nlanan sistem g\u00fcncellemesine bir yama daha ekledi.<\/p>\n<p>Mevcut s\u00fcr\u00fcmler i\u00e7in s\u00fcrekli yeni g\u00fcncellemeler yay\u0131nlan\u0131yor ancak bir\u00e7ok kullan\u0131c\u0131, ilgin\u00e7 bir \u015fekilde bilgisayarlar\u0131n\u0131n \u00e7al\u0131\u015fma bi\u00e7imini bozmaktan korktuklar\u0131 i\u00e7in bu g\u00fcncellemeleri y\u00fckleme konusunda aceleci davranm\u0131yor. Bu \u201cbekleyip g\u00f6relim\u201d yakla\u015f\u0131m\u0131n\u0131 benimsenizi \u00f6nermiyoruz.<\/p>\n<h2>CVE-2019-0797 nedir?<\/h2>\n<p>Bu a\u00e7\u0131k, sistemlerimiz taraf\u0131ndan yak\u0131n zamanda tespit edilen d\u00f6rd\u00fcnc\u00fc ayr\u0131cal\u0131k y\u00fckseltme g\u00fcvenlik a\u00e7\u0131\u011f\u0131d\u0131r. <a href=\"https:\/\/www.kaspersky.com.tr\/blog\/cve-2018-8589-vulnerability-detected\/5404\/\" target=\"_blank\" rel=\"noopener\">CVE-2018-8589<\/a> g\u00fcvenlik a\u00e7\u0131\u011f\u0131nda oldu\u011fu gibi bu da win32k.sys s\u00fcr\u00fcc\u00fcs\u00fcndeki bir race condition (yar\u0131\u015f durumu) hatas\u0131d\u0131r (teknik ayr\u0131nt\u0131lar\u0131 Securelist\u2019te <a href=\"https:\/\/securelist.com\/cve-2019-0797-zero-day-vulnerability\/89885\/\" target=\"_blank\" rel=\"noopener\">bulabilirsiniz<\/a>). Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131ndan faydalanan birden \u00e7ok hedefli sald\u0131r\u0131n\u0131n ger\u00e7ekle\u015fti\u011fini biliyoruz. Bu a\u00e7\u0131k, savunmas\u0131z sistemin kontrol\u00fcn\u00fcn tamamen sald\u0131rganlar\u0131n eline ge\u00e7mesine izin verebilir.<\/p>\n<h2>Sorunlar\u0131 \u00f6nleme<\/h2>\n<p>Her zamanki tavsiyemizi bir kez daha tekrarl\u0131yoruz:<\/p>\n<ul>\n<li>\u0130lgili sistem g\u00fcncellemesini y\u00fckleyin (g\u00fcncellemeyi <a href=\"https:\/\/portal.msrc.microsoft.com\/en-US\/security-guidance\/advisory\/CVE-2019-0797\" target=\"_blank\" rel=\"noopener nofollow\">Microsoft web sitesinde<\/a> bulabilirsiniz);<\/li>\n<li>Yaz\u0131l\u0131mlar\u0131 (\u00f6zellikle i\u015fletim sistemlerinin) daima son s\u00fcr\u00fcme g\u00fcncelleyin ve m\u00fcmk\u00fcnse, destek s\u00fcresi sona erdi\u011finde bu yaz\u0131l\u0131mlar\u0131 de\u011fi\u015ftirin;<\/li>\n<li>Davran\u0131\u015f analizi teknolojilerine sahip g\u00fcvenlik \u00e7\u00f6z\u00fcmleri kullan\u0131n.<\/li>\n<\/ul>\n<p>Bu g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131n tespitinde kullan\u0131lan teknolojiler (Geli\u015fmi\u015f Korumal\u0131 Alan, Hedefli Sald\u0131r\u0131lara Kar\u015f\u0131 Koruma, Davran\u0131\u015f Tespit Motoru, Otomatik A\u00e7\u0131k \u00d6nleme) Kaspersky Security for Business \u00e7\u00f6z\u00fcm\u00fcnde mevcuttur.<\/p>\n<input type=\"hidden\" class=\"category_for_banner\" value=\"kesb-trial-leadgen\">\n","protected":false},"excerpt":{"rendered":"<p>Proaktif teknolojilerimiz, APT sald\u0131r\u0131lar\u0131nda kullan\u0131lan bir Windows g\u00fcvenlik a\u00e7\u0131\u011f\u0131n\u0131 daha tespit etti.<\/p>\n","protected":false},"author":2506,"featured_media":5780,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[1194,1727],"tags":[1737,1630,1122,727,1742,113],"class_list":{"0":"post-5779","1":"post","2":"type-post","3":"status-publish","4":"format-standard","5":"has-post-thumbnail","7":"category-business","8":"category-smb","9":"tag-cve","10":"tag-endpoint","11":"tag-exploit","12":"tag-sifirinci-gun","13":"tag-uc-nokta","14":"tag-windows"},"hreflang":[{"hreflang":"tr","url":"https:\/\/www.kaspersky.com.tr\/blog\/cve-2019-0797-vulnerability-detected\/5779\/"},{"hreflang":"en-in","url":"https:\/\/www.kaspersky.co.in\/blog\/cve-2019-0797-vulnerability-detected\/15409\/"},{"hreflang":"en-ae","url":"https:\/\/me-en.kaspersky.com\/blog\/cve-2019-0797-vulnerability-detected\/12976\/"},{"hreflang":"en-us","url":"https:\/\/usa.kaspersky.com\/blog\/cve-2019-0797-vulnerability-detected\/17351\/"},{"hreflang":"en-gb","url":"https:\/\/www.kaspersky.co.uk\/blog\/cve-2019-0797-vulnerability-detected\/15504\/"},{"hreflang":"es-mx","url":"https:\/\/latam.kaspersky.com\/blog\/cve-2019-0797-vulnerability-detected\/14187\/"},{"hreflang":"es","url":"https:\/\/www.kaspersky.es\/blog\/cve-2019-0797-vulnerability-detected\/18032\/"},{"hreflang":"it","url":"https:\/\/www.kaspersky.it\/blog\/cve-2019-0797-vulnerability-detected\/17034\/"},{"hreflang":"ru","url":"https:\/\/www.kaspersky.ru\/blog\/cve-2019-0797-vulnerability-detected\/22399\/"},{"hreflang":"x-default","url":"https:\/\/www.kaspersky.com\/blog\/cve-2019-0797-vulnerability-detected\/25976\/"},{"hreflang":"fr","url":"https:\/\/www.kaspersky.fr\/blog\/cve-2019-0797-vulnerability-detected\/11517\/"},{"hreflang":"pl","url":"https:\/\/plblog.kaspersky.com\/cve-2019-0797-vulnerability-detected\/10476\/"},{"hreflang":"de","url":"https:\/\/www.kaspersky.de\/blog\/cve-2019-0797-vulnerability-detected\/18744\/"},{"hreflang":"ja","url":"https:\/\/blog.kaspersky.co.jp\/cve-2019-0797-vulnerability-detected\/22790\/"},{"hreflang":"ru-kz","url":"https:\/\/blog.kaspersky.kz\/cve-2019-0797-vulnerability-detected\/18091\/"},{"hreflang":"en-au","url":"https:\/\/www.kaspersky.com.au\/blog\/cve-2019-0797-vulnerability-detected\/22282\/"},{"hreflang":"en-za","url":"https:\/\/www.kaspersky.co.za\/blog\/cve-2019-0797-vulnerability-detected\/22218\/"}],"acf":[],"banners":"","maintag":{"url":"https:\/\/www.kaspersky.com.tr\/blog\/tag\/sifirinci-gun\/","name":"s\u0131f\u0131r\u0131nc\u0131 g\u00fcn"},"_links":{"self":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5779","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/users\/2506"}],"replies":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/comments?post=5779"}],"version-history":[{"count":2,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5779\/revisions"}],"predecessor-version":[{"id":6824,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/posts\/5779\/revisions\/6824"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media\/5780"}],"wp:attachment":[{"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/media?parent=5779"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/categories?post=5779"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.kaspersky.com.tr\/blog\/wp-json\/wp\/v2\/tags?post=5779"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}