Alert GCSA-08102 - MS08-061 Vulnerabilita' in Microsoft Windows
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
************************************************************************
Alert ID : GCSA-08102
Data : 15 Ottobre 2008
Titolo : MS08-061 Vulnerabilita' in Microsoft Windows Kernel
************************************************************************
:: Descrizione del problema
Questo aggiornamento di sicurezza risolve tre vulnerabilita'
relative al Microsoft Kernel.
Le vulnerabilita' consentono ad un attaccante locale di ottenere
il controllo completo del sistema.
:: Software e Sistemi affetti
Microsoft Windows 2000 SP4
Microsoft Windows XP SP2
Microsoft Windows XP SP3
Microsoft Windows XP Professional x64
Microsoft Windows XP Professional x64 SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 x64
Microsoft Windows Server 2003 x64 SP2
Microsoft Windows Server 2003 per Itanium SP1
Microsoft Windows Server 2003 per Itanium SP2
Microsoft Windows Vista
Microsoft Windows Vista SP1
Microsoft Windows Vista x64
Microsoft Windows Vista x64 SP1
Microsoft Windows Server 2008 per sistemi 32-bit
Microsoft Windows Server 2008 per sistemi x64
Microsoft Windows Server 2008 per sistemi Itanium
:: Impatto
Esecuzione di codice arbritario con privilegi superiori
:: Soluzioni
Applicare la patch segnalata nel bollettino Microsoft MS08-061
http://www.microsoft.com/technet/security/Bulletin/MS08-061.mspx
:: Riferimenti
Microsoft Security Bulletin MS08-061
http://www.microsoft.com/technet/security/Bulletin/MS08-061.mspx
FrSirt:
http://www.frsirt.com/english/advisories/2008/2812
Secunia:
http://secunia.com/advisories/32247/
SecurityFocus:
http://www.securityfocus.com/bid/31653
CVE Mitre:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2250
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2251
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2252
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSPX5mvOB+SpikaiRAQLogQP+Ogd8QVBQsBZ4M21BHV2AytRzGVnLntF3
2lZZvsPQAWmIVIjRI1o+sQwCsvB/UAiqLzcNi3Ao+t1HQIUM+0z5YTk1VdbSfYW6
hnyJuOdfANCwNMoxFsF+cJidEPKGvGXFU3KaxBhxlmPwLr/TNnBqhwjRJSRpGizB
es2RS5TMaOk=
=48j+
-----END PGP SIGNATURE-----
Hash: SHA1
************************************************************************
Alert ID : GCSA-08102
Data : 15 Ottobre 2008
Titolo : MS08-061 Vulnerabilita' in Microsoft Windows Kernel
************************************************************************
:: Descrizione del problema
Questo aggiornamento di sicurezza risolve tre vulnerabilita'
relative al Microsoft Kernel.
Le vulnerabilita' consentono ad un attaccante locale di ottenere
il controllo completo del sistema.
:: Software e Sistemi affetti
Microsoft Windows 2000 SP4
Microsoft Windows XP SP2
Microsoft Windows XP SP3
Microsoft Windows XP Professional x64
Microsoft Windows XP Professional x64 SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 x64
Microsoft Windows Server 2003 x64 SP2
Microsoft Windows Server 2003 per Itanium SP1
Microsoft Windows Server 2003 per Itanium SP2
Microsoft Windows Vista
Microsoft Windows Vista SP1
Microsoft Windows Vista x64
Microsoft Windows Vista x64 SP1
Microsoft Windows Server 2008 per sistemi 32-bit
Microsoft Windows Server 2008 per sistemi x64
Microsoft Windows Server 2008 per sistemi Itanium
:: Impatto
Esecuzione di codice arbritario con privilegi superiori
:: Soluzioni
Applicare la patch segnalata nel bollettino Microsoft MS08-061
http://www.microsoft.com/technet/security/Bulletin/MS08-061.mspx
:: Riferimenti
Microsoft Security Bulletin MS08-061
http://www.microsoft.com/technet/security/Bulletin/MS08-061.mspx
FrSirt:
http://www.frsirt.com/english/advisories/2008/2812
Secunia:
http://secunia.com/advisories/32247/
SecurityFocus:
http://www.securityfocus.com/bid/31653
CVE Mitre:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2250
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2251
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2252
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSPX5mvOB+SpikaiRAQLogQP+Ogd8QVBQsBZ4M21BHV2AytRzGVnLntF3
2lZZvsPQAWmIVIjRI1o+sQwCsvB/UAiqLzcNi3Ao+t1HQIUM+0z5YTk1VdbSfYW6
hnyJuOdfANCwNMoxFsF+cJidEPKGvGXFU3KaxBhxlmPwLr/TNnBqhwjRJSRpGizB
es2RS5TMaOk=
=48j+
-----END PGP SIGNATURE-----