Alert GCSA-14028 - Bollettino di Sicurezza Microsoft Agosto 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14028
Data: 13 Agosto 2014
Titolo: Bollettino di Sicurezza Microsoft Agosto 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 9 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-043 Vulnerabilita' in Windows Media Center (2978742)
MS14-044 Vulnerabilita' in SQL Server (2984340)
MS14-045 Vulnerabilita' nei driver in modalita' kernel (2984615)
MS14-046 Vulnerabilita' in .NET Framework (2984625)
MS14-047 Vulnerabilita' in LRPC (2978668)
MS14-048 Vulnerabilita' in OneNote (2977201)
MS14-049 Vulnerabilita' legata alla Gestione controllo servizi di
Windows(2962490)
MS14-050 Vulnerabilita' in Microsoft SharePoint Server (2977202)
MS14-051 Aggiornamento cumulativo per la protezione di Internet
Explorer(2976627)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Internet Explorer
Windows Vista
Windows 7
Windows 8 e Windows 8.1
Windows RT e Windows RT 8.1
Windows Server
Microsoft OneNote 2007 Service Pack 3
Microsoft SQL Server
Microsoft SharePoint Server
Windows Media Center TV Pack per Windows Vista
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Denial of Service
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, agosto 2014
https://technet.microsoft.com/it-it/library/security/ms14-aug
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/MS14-043
https://technet.microsoft.com/it-it/library/security/MS14-044
https://technet.microsoft.com/it-it/library/security/MS14-045
https://technet.microsoft.com/it-it/library/security/MS14-046
https://technet.microsoft.com/it-it/library/security/MS14-047
https://technet.microsoft.com/it-it/library/security/MS14-048
https://technet.microsoft.com/it-it/library/security/MS14-049
https://technet.microsoft.com/it-it/library/security/MS14-050
https://technet.microsoft.com/it-it/library/security/MS14-051
Microsoft Knowledge Base
http://support.microsoft.com/kb/2976627
http://support.microsoft.com/kb/2978742
http://support.microsoft.com/kb/2977201
http://support.microsoft.com/kb/2984340
http://support.microsoft.com/kb/2984615
http://support.microsoft.com/kb/2962490
http://support.microsoft.com/kb/2977202
http://support.microsoft.com/kb/2984625
http://support.microsoft.com/kb/2978668
http://blogs.technet.com/b/msrc/archive/2014/08/12/august-2014-security-updates.aspx
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
Security Tracker
http://www.securitytracker.com/id/1030714
http://www.securitytracker.com/id/1030715
http://www.securitytracker.com/id/1030716
http://www.securitytracker.com/id/1030717
http://www.securitytracker.com/id/1030718
http://www.securitytracker.com/id/1030719
http://www.securitytracker.com/id/1030720
http://www.securitytracker.com/id/1030721
http://www.securitytracker.com/id/1030722
SANS ISC Diary
https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+-+August+2014/18521
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4060
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0316
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0318
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1819
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1820
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2774
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2784
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2810
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2811
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2815
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2818
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2819
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2820
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2821
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2822
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2823
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2824
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2825
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2826
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2827
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4050
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4051
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4052
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4055
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4056
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4057
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4058
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4061
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4062
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4063
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4064
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4067
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAlPsXfUACgkQwZxMk2USYEKVagCgjgoPTqjbAqYq6dBfK4rFJMIb
9N0An1i5koozjxYseLAYfDuvyIfW0bCD
=bC8B
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14028
Data: 13 Agosto 2014
Titolo: Bollettino di Sicurezza Microsoft Agosto 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 9 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-043 Vulnerabilita' in Windows Media Center (2978742)
MS14-044 Vulnerabilita' in SQL Server (2984340)
MS14-045 Vulnerabilita' nei driver in modalita' kernel (2984615)
MS14-046 Vulnerabilita' in .NET Framework (2984625)
MS14-047 Vulnerabilita' in LRPC (2978668)
MS14-048 Vulnerabilita' in OneNote (2977201)
MS14-049 Vulnerabilita' legata alla Gestione controllo servizi di
Windows(2962490)
MS14-050 Vulnerabilita' in Microsoft SharePoint Server (2977202)
MS14-051 Aggiornamento cumulativo per la protezione di Internet
Explorer(2976627)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Internet Explorer
Windows Vista
Windows 7
Windows 8 e Windows 8.1
Windows RT e Windows RT 8.1
Windows Server
Microsoft OneNote 2007 Service Pack 3
Microsoft SQL Server
Microsoft SharePoint Server
Windows Media Center TV Pack per Windows Vista
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Denial of Service
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, agosto 2014
https://technet.microsoft.com/it-it/library/security/ms14-aug
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/MS14-043
https://technet.microsoft.com/it-it/library/security/MS14-044
https://technet.microsoft.com/it-it/library/security/MS14-045
https://technet.microsoft.com/it-it/library/security/MS14-046
https://technet.microsoft.com/it-it/library/security/MS14-047
https://technet.microsoft.com/it-it/library/security/MS14-048
https://technet.microsoft.com/it-it/library/security/MS14-049
https://technet.microsoft.com/it-it/library/security/MS14-050
https://technet.microsoft.com/it-it/library/security/MS14-051
Microsoft Knowledge Base
http://support.microsoft.com/kb/2976627
http://support.microsoft.com/kb/2978742
http://support.microsoft.com/kb/2977201
http://support.microsoft.com/kb/2984340
http://support.microsoft.com/kb/2984615
http://support.microsoft.com/kb/2962490
http://support.microsoft.com/kb/2977202
http://support.microsoft.com/kb/2984625
http://support.microsoft.com/kb/2978668
http://blogs.technet.com/b/msrc/archive/2014/08/12/august-2014-security-updates.aspx
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
Security Tracker
http://www.securitytracker.com/id/1030714
http://www.securitytracker.com/id/1030715
http://www.securitytracker.com/id/1030716
http://www.securitytracker.com/id/1030717
http://www.securitytracker.com/id/1030718
http://www.securitytracker.com/id/1030719
http://www.securitytracker.com/id/1030720
http://www.securitytracker.com/id/1030721
http://www.securitytracker.com/id/1030722
SANS ISC Diary
https://isc.sans.edu/diary/Microsoft+Patch+Tuesday+-+August+2014/18521
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4060
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0316
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0318
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1814
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1819
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1820
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2774
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2784
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2796
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2810
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2811
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2815
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2816
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2817
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2818
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2819
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2820
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2821
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2822
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2823
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2824
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2825
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2826
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-2827
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4050
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4051
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4052
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4055
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4056
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4057
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4058
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4061
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4062
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4063
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4064
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4067
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.9 (GNU/Linux)
iEYEARECAAYFAlPsXfUACgkQwZxMk2USYEKVagCgjgoPTqjbAqYq6dBfK4rFJMIb
9N0An1i5koozjxYseLAYfDuvyIfW0bCD
=bC8B
-----END PGP SIGNATURE-----