Alert GCSA-14017 - Bollettino di Sicurezza Microsoft Giugno 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14017
Data: 12 Giugno 2014
Titolo: Bollettino di Sicurezza Microsoft Giugno 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 7 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-030 vulnerabilita' in Desktop remoto (2969259)
MS14-031 vulnerabilita' nel procotollo TCP (2962478)
MS14-032 vulnerabilita' in Microsoft Lync Server (2969258)
MS14-033 vulnerabilita' in Microsoft XML Core Services (2966061)
MS14-034 vulnerabilita' in Microsoft Word (2969261)
MS14-035 Aggiornamento cumulativo per la protezione di Internet Explorer (2969262)
MS14-036 vulnerabilita' nel componente Microsoft Graphics (2967487)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Windows Vista
Windows 7
Windows 8
Windows Server
Internet Explorer
Microsoft Lync
Microsoft Office
:: Impatto
manomissione dei dati
attacco di tipo Denial of Service
intercettazione di informazioni personali
esecuzione di codice in modalita' remota
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, giugno 2014
https://technet.microsoft.com/it-it/library/security/ms14-jun
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/MS14-030
https://technet.microsoft.com/it-it/library/security/MS14-031
https://technet.microsoft.com/it-it/library/security/MS14-032
https://technet.microsoft.com/it-it/library/security/MS14-033
https://technet.microsoft.com/it-it/library/security/MS14-034
https://technet.microsoft.com/it-it/library/security/MS14-035
https://technet.microsoft.com/it-it/library/security/MS14-036
Microsoft Knowledge Base
http://support.microsoft.com/kb/2969259
http://support.microsoft.com/kb/2962478
http://support.microsoft.com/kb/2969258
http://support.microsoft.com/kb/2966061
http://support.microsoft.com/kb/2969261
http://support.microsoft.com/kb/2969262
http://support.microsoft.com/kb/2967487
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0282
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0296
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1762
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1764
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1766
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1769
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1770
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1771
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1772
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1773
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1774
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1775
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1777
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1778
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1779
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1780
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1781
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1782
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1783
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1784
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1785
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1786
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1788
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1789
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1790
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1791
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1792
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1794
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1795
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1796
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1797
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1799
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1800
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1802
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1803
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1804
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1805
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1811
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1816
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1817
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1818
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1823
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2753
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2754
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2755
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2756
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2757
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2758
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2759
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2760
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2761
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2763
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2764
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2765
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2766
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2767
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2768
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2769
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2770
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2771
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2772
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2773
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2775
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2776
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2777
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2778
SANS ISC Diary
https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+June+2014/18233
VRT-blog
http://vrt-blog.snort.org/2014/06/microsoft-update-tuesday-june-2014.html
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFTmXUpwZxMk2USYEIRAtf/AKDSl0JZWOgcQE51fpAzSarguSDvrwCdG1un
9TCh5DR9UsNKmRa1I6NoCyc=
=8yLu
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14017
Data: 12 Giugno 2014
Titolo: Bollettino di Sicurezza Microsoft Giugno 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 7 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-030 vulnerabilita' in Desktop remoto (2969259)
MS14-031 vulnerabilita' nel procotollo TCP (2962478)
MS14-032 vulnerabilita' in Microsoft Lync Server (2969258)
MS14-033 vulnerabilita' in Microsoft XML Core Services (2966061)
MS14-034 vulnerabilita' in Microsoft Word (2969261)
MS14-035 Aggiornamento cumulativo per la protezione di Internet Explorer (2969262)
MS14-036 vulnerabilita' nel componente Microsoft Graphics (2967487)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Windows Vista
Windows 7
Windows 8
Windows Server
Internet Explorer
Microsoft Lync
Microsoft Office
:: Impatto
manomissione dei dati
attacco di tipo Denial of Service
intercettazione di informazioni personali
esecuzione di codice in modalita' remota
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, giugno 2014
https://technet.microsoft.com/it-it/library/security/ms14-jun
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/MS14-030
https://technet.microsoft.com/it-it/library/security/MS14-031
https://technet.microsoft.com/it-it/library/security/MS14-032
https://technet.microsoft.com/it-it/library/security/MS14-033
https://technet.microsoft.com/it-it/library/security/MS14-034
https://technet.microsoft.com/it-it/library/security/MS14-035
https://technet.microsoft.com/it-it/library/security/MS14-036
Microsoft Knowledge Base
http://support.microsoft.com/kb/2969259
http://support.microsoft.com/kb/2962478
http://support.microsoft.com/kb/2969258
http://support.microsoft.com/kb/2966061
http://support.microsoft.com/kb/2969261
http://support.microsoft.com/kb/2969262
http://support.microsoft.com/kb/2967487
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0282
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0296
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1762
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1764
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1766
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1769
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1770
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1771
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1772
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1773
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1774
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1775
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1777
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1778
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1779
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1780
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1781
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1782
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1783
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1784
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1785
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1786
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1788
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1789
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1790
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1791
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1792
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1794
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1795
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1796
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1797
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1799
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1800
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1802
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1803
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1804
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1805
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1811
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1816
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1817
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1818
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1823
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2753
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2754
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2755
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2756
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2757
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2758
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2759
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2760
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2761
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2763
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2764
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2765
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2766
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2767
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2768
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2769
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2770
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2771
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2772
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2773
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2775
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2776
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2777
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2778
SANS ISC Diary
https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+June+2014/18233
VRT-blog
http://vrt-blog.snort.org/2014/06/microsoft-update-tuesday-june-2014.html
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFTmXUpwZxMk2USYEIRAtf/AKDSl0JZWOgcQE51fpAzSarguSDvrwCdG1un
9TCh5DR9UsNKmRa1I6NoCyc=
=8yLu
-----END PGP SIGNATURE-----