微软修复Win11高危LNK漏洞CVE-2025-9491

DoNews

Dec 03, 2025

科技媒体BornCity今日发布博文，报道称微软通过未公开说明的更新，修复了Windows 11系统中编号为CVE-2025-9491的LNK文件高危漏洞。该漏洞最早可追溯至2025年3月，于2025年8月底被公开披露，可被利用实现远程任意代码执行。微软最初表示该问题不符合其安全漏洞标准，拒绝发布官方补丁。漏洞由趋势科技安全研究人员发现，攻击者可构造特殊.LNK（快捷方式）文件，隐藏内含的恶意指令...

Source Link

Disclaimer: Investing carries risk. This is not financial advice. The above content should not be regarded as an offer, recommendation, or solicitation on acquiring or disposing of any financial products, any associated discussions, comments, or posts by author or other users should not be considered as such either. It is solely for general information purpose only, which does not consider your own investment objectives, financial situations or needs. TTM assumes no responsibility or warranty for the accuracy and completeness of the information, investors should do their own research and may seek professional advice before investing.

Most Discussed

{"basename":"","ssrTDKData":{"titleTemplate":"%s - Tiger Brokers","title":"Tiger Brokers | Global Stocks, Options & Futures Trading App","description":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","keywords":"tiger brokers,tiger trade,tiger brokers singapore,broker online,stock trading in singapore,share trading singapore,brokerage firm singapore,trading app,stock broker singapore,stock trading platforms,trading account","social":{"ogDescription":"Tiger Brokers, one-stop investment in US stocks, SGX stocks, HK stocks, A-shares & other global assets. One of the best stock trading platforms in Singapore.","ogImage":"https://c1.itigergrowtha.com/portal5/static/media/og-logo.be62fbe1.png","ogUrl":"https://www.itiger.com/news/2588995200"},"companyName":"Tiger Brokers"},"pageData":{"isMobile":false,"isTiger":false,"isTTM":true,"region":"SGP","license":"TBSG","edition":"fundamental"},"isCrawlerRequest":true,"__swrFallback__":{"@#url:\"https://stock-news.skytigris.cn/v3/news\",params:#id:\"2588995200\",edition:\"fundamental\",auth_exemption:1,,,undefined,":{"share":"https://ttm.financial/m/news/2588995200?lang=en_US&edition=fundamental","thumbnail":"","is_english":false,"pubTime":"2025-12-03 10:37","share_image_url":"https://static.laohu8.com/9a95c1376e76363c1401fee7d3717173","id":"2588995200","market":"us","top_or_hot":-1,"title":"微软修复Win11高危LNK漏洞CVE-2025-9491","media":"DoNews","content":"<div>\n<p>科技媒体BornCity今日发布博文，报道称微软通过未公开说明的更新，修复了Windows 11系统中编号为CVE-2025-9491的LNK文件高危漏洞。该漏洞最早可追溯至2025年3月，于2025年8月底被公开披露，可被利用实现远程任意代码执行。微软最初表示该问题不符合其安全漏洞标准，拒绝发布官方补丁。漏洞由趋势科技安全研究人员发现，攻击者可构造特殊.LNK（快捷方式）文件，隐藏内含的恶意指令...</p>\n\n<a href=\"http://gu.qq.com/resources/shy/news/detail-v2/index.html#/?id=nesSN20251203104333a7206c7b&s=b\">Source Link</a>\n\n</div>\n","source":"tencent","html":"<!DOCTYPE html>\n<html>\n<head>\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=utf-8\" />\n<meta name=\"viewport\" content=\"width=device-width,initial-scale=1.0,minimum-scale=1.0,maximum-scale=1.0,user-scalable=no\"/>\n<meta name=\"format-detection\" content=\"telephone=no,email=no,address=no\" />\n<title>微软修复Win11高危LNK漏洞CVE-2025-9491</title>\n<style type=\"text/css\">\na,abbr,acronym,address,applet,article,aside,audio,b,big,blockquote,body,canvas,caption,center,cite,code,dd,del,details,dfn,div,dl,dt,\nem,embed,fieldset,figcaption,figure,footer,form,h1,h2,h3,h4,h5,h6,header,hgroup,html,i,iframe,img,ins,kbd,label,legend,li,mark,menu,nav,\nobject,ol,output,p,pre,q,ruby,s,samp,section,small,span,strike,strong,sub,summary,sup,table,tbody,td,tfoot,th,thead,time,tr,tt,u,ul,var,video{ font:inherit;margin:0;padding:0;vertical-align:baseline;border:0 }\nbody{ font-size:16px; line-height:1.5; color:#999; background:transparent; }\n.wrapper{ overflow:hidden;word-break:break-all;padding:10px; }\nh1,h2{ font-weight:normal; line-height:1.35; margin-bottom:.6em; }\nh3,h4,h5,h6{ line-height:1.35; margin-bottom:1em; }\nh1{ font-size:24px; }\nh2{ font-size:20px; }\nh3{ font-size:18px; }\nh4{ font-size:16px; }\nh5{ font-size:14px; }\nh6{ font-size:12px; }\np,ul,ol,blockquote,dl,table{ margin:1.2em 0; }\nul,ol{ margin-left:2em; }\nul{ list-style:disc; }\nol{ list-style:decimal; }\nli,li p{ margin:10px 0;}\nimg{ max-width:100%;display:block;margin:0 auto 1em; }\nblockquote{ color:#B5B2B1; border-left:3px solid #aaa; padding:1em; }\nstrong,b{font-weight:bold;}\nem,i{font-style:italic;}\ntable{ width:100%;border-collapse:collapse;border-spacing:1px;margin:1em 0;font-size:.9em; }\nth,td{ padding:5px;text-align:left;border:1px solid #aaa; }\nth{ font-weight:bold;background:#5d5d5d; }\n.symbol-link{font-weight:bold;}\n/* header{ border-bottom:1px solid #494756; } */\n.title{ margin:0 0 8px;line-height:1.3;color:#ddd; }\n.meta {color:#5e5c6d;font-size:13px;margin:0 0 .5em; }\na{text-decoration:none; color:#2a4b87;}\n.meta .head { display: inline-block; overflow: hidden}\n.head .h-thumb { width: 30px; height: 30px; margin: 0; padding: 0; border-radius: 50%; float: left;}\n.head .h-content { margin: 0; padding: 0 0 0 9px; float: left;}\n.head .h-name {font-size: 13px; color: #eee; margin: 0;}\n.head .h-time {font-size: 11px; color: #7E829C; margin: 0;line-height: 11px;}\n.small {font-size: 12.5px; display: inline-block; transform: scale(0.9); -webkit-transform: scale(0.9); transform-origin: left; -webkit-transform-origin: left;}\n.smaller {font-size: 12.5px; display: inline-block; transform: scale(0.8); -webkit-transform: scale(0.8); transform-origin: left; -webkit-transform-origin: left;}\n.bt-text {font-size: 12px;margin: 1.5em 0 0 0}\n.bt-text p {margin: 0}\n</style>\n</head>\n<body>\n<div class=\"wrapper\">\n<header>\n<h2 class=\"title\">\n微软修复Win11高危LNK漏洞CVE-2025-9491\n</h2>\n\n<h4 class=\"meta\">\n\n\n2025-12-03 10:37 北京时间&nbsp;&nbsp;&nbsp;<a href=http://gu.qq.com/resources/shy/news/detail-v2/index.html#/?id=nesSN20251203104333a7206c7b&s=b><strong>DoNews</strong></a>\n\n\n</h4>\n\n</header>\n<article>\n<div>\n<p>科技媒体BornCity今日发布博文，报道称微软通过未公开说明的更新，修复了Windows 11系统中编号为CVE-2025-9491的LNK文件高危漏洞。该漏洞最早可追溯至2025年3月，于2025年8月底被公开披露，可被利用实现远程任意代码执行。微软最初表示该问题不符合其安全漏洞标准，拒绝发布官方补丁。漏洞由趋势科技安全研究人员发现，攻击者可构造特殊.LNK（快捷方式）文件，隐藏内含的恶意指令...</p>\n\n<a href=\"http://gu.qq.com/resources/shy/news/detail-v2/index.html#/?id=nesSN20251203104333a7206c7b&s=b\">Source Link</a>\n\n</div>\n\n\n</article>\n</div>\n</body>\n</html>\n","isBrief":false,"type":0,"news_type":1,"symbol":"LU2750360997.AUD","symbol_name":"INVESCO GLOBAL EQUITY INCOME ADVANTAGE \"A\" (AUDHDG) INC","start_time":0,"source_url":"http://gu.qq.com/resources/shy/news/detail-v2/index.html#/?id=nesSN20251203104333a7206c7b&s=b","article_id":"2588995200","we_media_id":null,"thumbnails":[],"rights":{"source":"tencent","url":"http://gu.qq.com/resources/shy/news/detail-v2/index.html#/?id=nesSN20251203104333a7206c7b&s=b","rn_cache_url":null,"customStyle":"body{padding-top:10px;}#news_title{font-weight:bold;#titleStyle#;}#news_description span{font-size:12px;#descriptionStyle#;}.footer-note{#statement#}","selectors":".mod-LoadTzbdNews, body","filters":".relate-stock, .hot-list, .recom-box, .wx-sou","directOrigin":true},"url":"https://stock-news.laohu8.com/highlight/detail?id=2588995200","pubTimestamp":1764729423,"columns":[],"sourceInfo":{"source_id":"tencent","name":"腾讯"},"weMediaInfo":null,"summary":"科技媒体BornCity今日发布博文，报道称微软通过未公开说明的更新，修复了Windows 11系统中编号为CVE-2025-9491的LNK文件高危漏洞。微软最初表示该问题不符合其安全漏洞标准，拒绝发布官方补丁。在微软拒绝提供补丁后，安全公司ACROS Security为其0patch平台开发并发布了微补丁，主动拦截相关攻击行为，为用户提供临时防护。第三方安全社区的持续关注和响应可能促使微软重新评估风险。目前微软已通过更新解决恶意指令隐藏问题，完成漏洞修复。","collect":0,"end_time":0,"defaultTopTitle":"qq.com","property":[],"viewcount":null,"language":"zh","relate_stocks":{"LU2750360997.AUD":"INVESCO GLOBAL EQUITY INCOME ADVANTAGE \"A\" (AUDHDG) INC","LU2023251221.USD":"ALLIANZ GLOBAL SUSTAINABILITY \"AM\" (USD) INC","IE00BDCRKT87.USD":"PINEBRIDGE GLOBAL DYNAMIC ASSET ALLOCATION \"ADC\" (USD) INC","LU0127658192.USD":"EASTSPRING INVESTMENTS GLOBAL TECHNOLOGY \"A\" (USD) ACC","LU1935043536.SGD":"MANULIFE GF GLOBAL MULTI-ASSET DIVERSIFIED INCOME \"AA\" (SGDHDG) INC A","LU0795875169.SGD":"JPMorgan Investment Funds - Global Income A (div) SGD-H","LU0175139822.USD":"AB FCP I Global Equity Blend A USD","LU0124676726.USD":"AB SICAV I - SUSTAINABLE US THEMATIC PORTFOLIO \"A\" (USD) ACC","LU0077335932.USD":"FIDELITY AMERICAN GROWTH \"A\" INC","LU2237443465.HKD":"abrdn SICAV I -  GLOBAL DYNAMIC DIVIDEND \"A\" (HKD) INC","LU1814569148.SGD":"WELLINGTON GLOBAL QUALITY GROWTH \"D\" (SGDHDG) ACC","LU2764262908.HKD":"BGF GLOBAL UNCONSTRAINED EQUITY \"A2\" (HKD) ACC","LU2298321311.HKD":"BGF CIRCULAR ECONOMY \"A\" (HKDHDG) ACC","LU0158827948.USD":"ALLIANZ GLOBAL SUSTAINABILITY \"A\" (USD) INC","LU0320765059.SGD":"FTIF - Franklin US Opportunities A Acc SGD","SG9999014898.SGD":"United Global Quality Growth Fund Dis SGD","LU2148611432.USD":"AZ ALLOCATION BALANCED BRAVE \"AAZ\" (USDHDG) ACC","IE00BJLML261.HKD":"HSBC GLOBAL EQUITY INDEX \"HCH\" (HKD) ACC","LU2028103732.USD":"ALLIANZ GLOBAL SUSTAINABILITY \"AMG\" (USD) INC","LU0965509283.SGD":"AB LOW VOLATILITY EQUITY PORTFOLIO \"AD\" (SGDHDG) INC","BK4585":"ETF&股票定投概念","LU2505996509.AUD":"WELLINGTON MULTI-ASSET HIGH INCOME \"AM4H\" (AUDHDG) INC","LU0198837287.USD":"UBS (LUX) EQUITY SICAV - USA GROWTH \"P\" (USD) ACC","LU1564329115.USD":"Blackrock Dynamic High Income A6 USD","LU0310799852.SGD":"FTIF - Templeton Global Equity Income A MDIS SGD","LU1804176565.USD":"EASTSPRING INV GLOBAL GROWTH EQUITY \"A\" (USD) ACC","LU1923622614.USD":"Natixis Thematics Meta R/A USD","LU0912757837.SGD":"JPMorgan Investment Funds - Global Income A (mth) SGD-H","SG9999015341.SGD":"United Income Focus Trust Acc SGD-H","LU1506573853.SGD":"MANULIFE GF GLOBAL EQUITY \"AA\" (SGD) INC","LU2125909593.SGD":"Natixis Thematics Meta R/A SGD","LU0079474960.USD":"联博美国增长基金A","LU1340139317.AUD":"JPMorgan Investment Funds - Global Macro Opportunities A (acc) AUD-H","LU1623119135.USD":"Natixis Mirova Global Sustainable Equity R-NPF/A USD","LU0289941410.SGD":"AB FCP I Dynamic Diversified AX SGD","SG9999014880.SGD":"大华全球优质成长基金Acc SGD","IE0009G5SDU7.USD":"PIMCO BALANCED INCOME AND GROWTH \"M\" (USD) INC","LU2471134523.USD":"INVESCO GLOBAL EQUITY INCOME ADVANTAGE \"A\" (USD) ACC","CVE":"Cenovus能源","LU1712237335.SGD":"Natixis Mirova Global Sustainable Equity H-R-NPF/A SGD","IE00BN29S564.USD":"JANUS HENDERSON BALANCED \"A3\" (USD) INC","IE000ITXATA3.USD":"PIMCO BALANCED INCOME AND GROWTH \"M\" (USD) ACC","LU1334329650.SGD":"JPMorgan Investment Funds - Global Macro Opportunities A (acc) SGD-H","LU2471134796.USD":"INVESCO GLOBAL EQUITY INCOME ADVANTAGE \"A\" (USD) INC","IE00BMPRXQ63.HKD":"NEUBERGER BERMAN NEXT GENERATION CONNECTIVITY FUND \"A\" (HKDHDG) ACC","LU2417539215.USD":"ALLIANZ GLOBAL INCOME \"AMF\" (USD) INC","IE000YTNTUN2.SGD":"PIMCO BALANCED INCOME AND GROWTH \"M\" (SGDHDG)INC","LU2750360641.GBP":"INVESCO GLOBAL EQUITY INCOME ADVANTAGE \"A\" (GBPHDG) INC","MSFT":"微软","LU0211327993.USD":"TEMPLETON GLOBAL EQUITY INCOME \"A\" (USD) ACC"},"translate_title":"Microsoft fixes Win11 high-risk LNK vulnerability CVE-2025-9491","themeId":null,"isJumpTheme":false,"ttsUrl":null,"symbols_score_info":{"CVE":1.5,"MSFT":1.5},"content_text":"科技媒体BornCity今日发布博文，报道称微软通过未公开说明的更新，修复了Windows 11系统中编号为CVE-2025-9491的LNK文件高危漏洞。该漏洞最早可追溯至2025年3月，于2025年8月底被公开披露，可被利用实现远程任意代码执行。微软最初表示该问题不符合其安全漏洞标准，拒绝发布官方补丁。漏洞由趋势科技安全研究人员发现，攻击者可构造特殊.LNK（快捷方式）文件，隐藏内含的恶意指令，使用户在通过Windows界面检查时难以察觉风险。当用户被诱导访问恶意页面或打开此类伪装文件后，恶意代码将在当前系统权限下执行。该漏洞被零日计划（ZDI）评为CVSS 7.0分，属高危级别。2025年11月1日，微软发布声明称已注意到该问题，但认为系统在处理.LNK文件时会多次向用户发出警告，且Microsoft Defender与智能应用控制（Smart App Control）功能足以检测并阻止威胁，因此不构成需修补的安全漏洞。微软当时建议用户避免下载未知来源文件作为主要防御手段。此决定引发部分安全社区讨论。在微软拒绝提供补丁后，安全公司ACROS Security为其0patch平台开发并发布了微补丁，主动拦截相关攻击行为，为用户提供临时防护。第三方安全社区的持续关注和响应可能促使微软重新评估风险。目前微软已通过更新解决恶意指令隐藏问题，完成漏洞修复。","kind":"news","is_publish_news":true,"is_publish_highlight":false,"is_publish_live":false,"is_publish_wemedia":null,"editions":null,"column":"","sentiment":"0","news_tag":"","news_rank":0,"symbols":[],"gpt_button":0,"need_auth":false,"code":"91000000","status":"200"}}}