Alert GCSA-17035 - Microsoft Security Update Giugno 2017
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17035
Data: 14 giugno 2017
Titolo: Microsoft Security Update Giugno 2017
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato aggiornamenti mirati a risolvere
96 vulnerabilita' presenti nei sistemi operativi Windows
e in vari software Microsoft.
In particolare due vulnerabilita':
LNK Remote Code Execution Vulnerability (CVE 2017-8464)
Windows Search Remote Code Execution Vulnerability (CVE 2017-8543)
risultano correntemente sfruttate, tanto che Microsoft
ha rilasciato patch anche per piattaforme non piu' supportate
(Windows XP, Windows Vista, Windows 8 e Windows Server 2003).
Maggiori dettagli nella sezione "Riferimenti".
:: Software interessato
Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
Silverlight
Skype for Business and Lync
Adobe Flash Player
:: Impatto
Esecuzione remota di codice arbitrario
Acquisizione di privilegi piu' elevati
Bypass delle funzionalita' di sicurezza
Denial of Service
:: Soluzioni
Per default l'installazione degli aggiornamenti
avviene in maniera automatica.
Windows Update: domande frequenti
http://go.microsoft.com/fwlink/?LinkID=40747
:: Riferimenti
Microsoft June 2017 Security Release
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/40969d56-1b2a-e711-80db-000d3a32fc99
Microsoft Security Update Summary
https://portal.msrc.microsoft.com/en-us/security-guidance/summary
Microsoft Security update deployment information
https://support.microsoft.com/en-us/help/20170613/security-update-deployment-information-june-13-2017
Microsoft June 2017 security update release
https://blogs.technet.microsoft.com/msrc/2017/06/13/june-2017-security-update-release/
Microsoft Security Advisory 4025685: Guidance related to June 2017 security update release
https://technet.microsoft.com/en-us/library/security/4025685
Microsoft security advisory 4025685: Guidance for older platforms
https://support.microsoft.com/en-us/help/4025687/microsoft-security-advisory-4025685-guidance-for-older-platforms
SANS ISC Diary
https://isc.sans.edu/diary.html?storyid=22512
Risk of 'Destructive Cyber Attacks' Prompts Microsoft to Update XP Again
https://threatpost.com/risk-of-destructive-cyber-attacks-prompts-microsoft-to-update-xp-again/126235/
Microsoft Patches Two Critical Vulnerabilities Under Attack
https://threatpost.com/microsoft-patches-two-critical-vulnerabilities-under-attack/126239/
Post-WannaCry, 5.5 Million Devices Still Expose SMB Port
https://threatpost.com/post-wannacry-5-5-million-devices-still-expose-smb-port/126249/
ZDnet: Microsoft - Latest security fixes thwart NSA hacking tools
http://www.zdnet.com/article/microsoft-reverses-course-patches-three-remaining-nsa-exploits-targeting-windows-xp/
I riferimenti CVE sono disponibili nelle segnalazioni originali.
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFZQUFtwZxMk2USYEIRAgBxAKDfNd2lX7V1/FLLmRbon/e802OG5ACeOQVI
WSk09dTyinaY6T5dB0OhjQg=
=ZlyM
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17035
Data: 14 giugno 2017
Titolo: Microsoft Security Update Giugno 2017
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato aggiornamenti mirati a risolvere
96 vulnerabilita' presenti nei sistemi operativi Windows
e in vari software Microsoft.
In particolare due vulnerabilita':
LNK Remote Code Execution Vulnerability (CVE 2017-8464)
Windows Search Remote Code Execution Vulnerability (CVE 2017-8543)
risultano correntemente sfruttate, tanto che Microsoft
ha rilasciato patch anche per piattaforme non piu' supportate
(Windows XP, Windows Vista, Windows 8 e Windows Server 2003).
Maggiori dettagli nella sezione "Riferimenti".
:: Software interessato
Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
Silverlight
Skype for Business and Lync
Adobe Flash Player
:: Impatto
Esecuzione remota di codice arbitrario
Acquisizione di privilegi piu' elevati
Bypass delle funzionalita' di sicurezza
Denial of Service
:: Soluzioni
Per default l'installazione degli aggiornamenti
avviene in maniera automatica.
Windows Update: domande frequenti
http://go.microsoft.com/fwlink/?LinkID=40747
:: Riferimenti
Microsoft June 2017 Security Release
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/40969d56-1b2a-e711-80db-000d3a32fc99
Microsoft Security Update Summary
https://portal.msrc.microsoft.com/en-us/security-guidance/summary
Microsoft Security update deployment information
https://support.microsoft.com/en-us/help/20170613/security-update-deployment-information-june-13-2017
Microsoft June 2017 security update release
https://blogs.technet.microsoft.com/msrc/2017/06/13/june-2017-security-update-release/
Microsoft Security Advisory 4025685: Guidance related to June 2017 security update release
https://technet.microsoft.com/en-us/library/security/4025685
Microsoft security advisory 4025685: Guidance for older platforms
https://support.microsoft.com/en-us/help/4025687/microsoft-security-advisory-4025685-guidance-for-older-platforms
SANS ISC Diary
https://isc.sans.edu/diary.html?storyid=22512
Risk of 'Destructive Cyber Attacks' Prompts Microsoft to Update XP Again
https://threatpost.com/risk-of-destructive-cyber-attacks-prompts-microsoft-to-update-xp-again/126235/
Microsoft Patches Two Critical Vulnerabilities Under Attack
https://threatpost.com/microsoft-patches-two-critical-vulnerabilities-under-attack/126239/
Post-WannaCry, 5.5 Million Devices Still Expose SMB Port
https://threatpost.com/post-wannacry-5-5-million-devices-still-expose-smb-port/126249/
ZDnet: Microsoft - Latest security fixes thwart NSA hacking tools
http://www.zdnet.com/article/microsoft-reverses-course-patches-three-remaining-nsa-exploits-targeting-windows-xp/
I riferimenti CVE sono disponibili nelle segnalazioni originali.
GARR CERT Security Alert - subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFZQUFtwZxMk2USYEIRAgBxAKDfNd2lX7V1/FLLmRbon/e802OG5ACeOQVI
WSk09dTyinaY6T5dB0OhjQg=
=ZlyM
-----END PGP SIGNATURE-----