Alert GCSA-14021 - Bollettino di Sicurezza Microsoft Luglio 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14021
Data: 09 Luglio 2014
Titolo: Bollettino di Sicurezza Microsoft Luglio 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 6 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-037 Aggiornamento cumulativo per la protezione di Internet Explorer (2975687)
MS14-038 vulnerabilita' in Windows Journal (2975689)
MS14-039 vulnerabilita' della tastiera su schermo (2975685)
MS14-040 vulnerabilita' nel driver di funzioni ausiliario (AFD) (2975684)
MS14-041 vulnerabilita' in DirectShow (2975681)
MS14-042 vulnerabilita' in Microsoft Service Bus (2972621)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Internet Explorer
Windows Vista
Windows 7
Windows 8 e Windows 8.1
Windows RT e Windows RT 8.1
Windows Server
Microsoft Service Bus per Windows Server
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Denial of Service
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, luglio 2014
https://technet.microsoft.com/it-it/library/security/ms14-jul
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/MS14-037
https://technet.microsoft.com/it-it/library/security/MS14-038
https://technet.microsoft.com/it-it/library/security/MS14-039
https://technet.microsoft.com/it-it/library/security/MS14-040
https://technet.microsoft.com/it-it/library/security/MS14-041
https://technet.microsoft.com/it-it/library/security/MS14-042
Microsoft Knowledge Base
http://support.microsoft.com/kb/2975687
http://support.microsoft.com/kb/2975689
http://support.microsoft.com/kb/2975685
http://support.microsoft.com/kb/2975684
http://support.microsoft.com/kb/2975681
http://support.microsoft.com/kb/2972621
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1763
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1765
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2785
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2786
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2787
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2788
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2789
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2790
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2791
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2792
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2794
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2795
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2797
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2798
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2800
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2801
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2802
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2803
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2804
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2806
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2807
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2809
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2813
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1763
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1765
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2783
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2785
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2786
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2787
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2788
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2789
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2790
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2791
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2792
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2794
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2795
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2797
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2798
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2800
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2801
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2802
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2803
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2804
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2806
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2807
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2809
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2813
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1824
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2781
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1767
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2780
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2814
SANS ISC Diary
https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+July+2014/18359
Security Tracker
http://www.securitytracker.com/id/1030531
http://www.securitytracker.com/id/1030532
http://www.securitytracker.com/id/1030535
http://www.securitytracker.com/id/1030536
http://www.securitytracker.com/id/1030537
http://www.securitytracker.com/id/1030538
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFTvQ6UwZxMk2USYEIRAhsWAKDbWQjeOqys3enuWG9OAMbC8VS4DgCeKMgL
06DWkk75sKR03ar2eNKU3b8=
=ju+U
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14021
Data: 09 Luglio 2014
Titolo: Bollettino di Sicurezza Microsoft Luglio 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 6 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-037 Aggiornamento cumulativo per la protezione di Internet Explorer (2975687)
MS14-038 vulnerabilita' in Windows Journal (2975689)
MS14-039 vulnerabilita' della tastiera su schermo (2975685)
MS14-040 vulnerabilita' nel driver di funzioni ausiliario (AFD) (2975684)
MS14-041 vulnerabilita' in DirectShow (2975681)
MS14-042 vulnerabilita' in Microsoft Service Bus (2972621)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Internet Explorer
Windows Vista
Windows 7
Windows 8 e Windows 8.1
Windows RT e Windows RT 8.1
Windows Server
Microsoft Service Bus per Windows Server
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Denial of Service
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, luglio 2014
https://technet.microsoft.com/it-it/library/security/ms14-jul
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/MS14-037
https://technet.microsoft.com/it-it/library/security/MS14-038
https://technet.microsoft.com/it-it/library/security/MS14-039
https://technet.microsoft.com/it-it/library/security/MS14-040
https://technet.microsoft.com/it-it/library/security/MS14-041
https://technet.microsoft.com/it-it/library/security/MS14-042
Microsoft Knowledge Base
http://support.microsoft.com/kb/2975687
http://support.microsoft.com/kb/2975689
http://support.microsoft.com/kb/2975685
http://support.microsoft.com/kb/2975684
http://support.microsoft.com/kb/2975681
http://support.microsoft.com/kb/2972621
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1763
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1765
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2785
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2786
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2787
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2788
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2789
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2790
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2791
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2792
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2794
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2795
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2797
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2798
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2800
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2801
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2802
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2803
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2804
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2806
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2807
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2809
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2813
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1763
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1765
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2783
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2785
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2786
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2787
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2788
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2789
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2790
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2791
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2792
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2794
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2795
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2797
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2798
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2800
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2801
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2802
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2803
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2804
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2806
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2807
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2809
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2813
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1824
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2781
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1767
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2780
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2814
SANS ISC Diary
https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+July+2014/18359
Security Tracker
http://www.securitytracker.com/id/1030531
http://www.securitytracker.com/id/1030532
http://www.securitytracker.com/id/1030535
http://www.securitytracker.com/id/1030536
http://www.securitytracker.com/id/1030537
http://www.securitytracker.com/id/1030538
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFTvQ6UwZxMk2USYEIRAhsWAKDbWQjeOqys3enuWG9OAMbC8VS4DgCeKMgL
06DWkk75sKR03ar2eNKU3b8=
=ju+U
-----END PGP SIGNATURE-----