Alert GCSA-08105 - MS08-064 Vulnerabilita' in Microsoft Virtual
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
************************************************************************
Alert ID : GCSA-08105
Data : 15 Ottobre 2008
Titolo : MS08-064 Vulnerabilita' in Virtual Address Descriptor
************************************************************************
:: Descrizione del problema
Questo aggiornamento di sicurezza risolve una vulnerabilita'
relativa a Microsoft Virtual Address Descriptor.
La vulnerabilita' consente escalation di privilegi se un utente
esegue applicazioni appositamente predisposte.
:: Software e Sistemi affetti
Microsoft Windows XP SP2
Microsoft Windows XP SP3
Microsoft Windows XP Professional x64
Microsoft Windows XP Professional x64 SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 x64
Microsoft Windows Server 2003 x64 SP2
Microsoft Windows Server 2003 per Itanium SP1
Microsoft Windows Server 2003 per Itanium SP2
Microsoft Windows Vista
Microsoft Windows Vista SP1
Microsoft Windows Vista x64
Microsoft Windows Vista x64 SP1
Microsoft Windows Server 2008 per sistemi 32-bit
Microsoft Windows Server 2008 per sistemi x64
Microsoft Windows Server 2008 per sistemi Itanium
:: Impatto
Escalation di privilegi
:: Soluzioni
Applicare la patch segnalata nel bollettino Microsoft MS08-064
http://www.microsoft.com/technet/security/bulletin/ms08-064.mspx
:: Riferimenti
Microsoft Security Bulletin MS08-064
http://www.microsoft.com/technet/security/bulletin/ms08-064.mspx
FrSirt:
http://www.frsirt.com/english/advisories/2008/2815
Secunia:
http://secunia.com/advisories/32251/
SecurityFocus:
http://www.securityfocus.com/bid/31675
CVE Mitre:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4036
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSPYEovOB+SpikaiRAQKN9AQA0TGrI95Xj5K3axptJLq2nBEB6TClplq6
OwmNemw47nQBP3zsi1AW9G2aP5OZRIk4E4tPbzspkBPCW7OSKm1nA/kmTmOQWN2P
hl+7OeyLBWwDvaUj5zzNFEUEbyYHzFdnqQhch7MmBO2cD7Zjjr6fa6ApY+RRV4UE
j1c9mvEhMEQ=
=VHze
-----END PGP SIGNATURE-----
Hash: SHA1
************************************************************************
Alert ID : GCSA-08105
Data : 15 Ottobre 2008
Titolo : MS08-064 Vulnerabilita' in Virtual Address Descriptor
************************************************************************
:: Descrizione del problema
Questo aggiornamento di sicurezza risolve una vulnerabilita'
relativa a Microsoft Virtual Address Descriptor.
La vulnerabilita' consente escalation di privilegi se un utente
esegue applicazioni appositamente predisposte.
:: Software e Sistemi affetti
Microsoft Windows XP SP2
Microsoft Windows XP SP3
Microsoft Windows XP Professional x64
Microsoft Windows XP Professional x64 SP2
Microsoft Windows Server 2003 SP1
Microsoft Windows Server 2003 SP2
Microsoft Windows Server 2003 x64
Microsoft Windows Server 2003 x64 SP2
Microsoft Windows Server 2003 per Itanium SP1
Microsoft Windows Server 2003 per Itanium SP2
Microsoft Windows Vista
Microsoft Windows Vista SP1
Microsoft Windows Vista x64
Microsoft Windows Vista x64 SP1
Microsoft Windows Server 2008 per sistemi 32-bit
Microsoft Windows Server 2008 per sistemi x64
Microsoft Windows Server 2008 per sistemi Itanium
:: Impatto
Escalation di privilegi
:: Soluzioni
Applicare la patch segnalata nel bollettino Microsoft MS08-064
http://www.microsoft.com/technet/security/bulletin/ms08-064.mspx
:: Riferimenti
Microsoft Security Bulletin MS08-064
http://www.microsoft.com/technet/security/bulletin/ms08-064.mspx
FrSirt:
http://www.frsirt.com/english/advisories/2008/2815
Secunia:
http://secunia.com/advisories/32251/
SecurityFocus:
http://www.securityfocus.com/bid/31675
CVE Mitre:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4036
-----BEGIN PGP SIGNATURE-----
iQCVAwUBSPYEovOB+SpikaiRAQKN9AQA0TGrI95Xj5K3axptJLq2nBEB6TClplq6
OwmNemw47nQBP3zsi1AW9G2aP5OZRIk4E4tPbzspkBPCW7OSKm1nA/kmTmOQWN2P
hl+7OeyLBWwDvaUj5zzNFEUEbyYHzFdnqQhch7MmBO2cD7Zjjr6fa6ApY+RRV4UE
j1c9mvEhMEQ=
=VHze
-----END PGP SIGNATURE-----