Alert GCSA-09089 - Aggiornamento cumulativo per Internet Explorer
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-09089
Data : 14 Ottobre 2009
Titolo : Aggiornamento cumulativo per Internet Explorer (MS09-054)
******************************************************************
:: Descrizione del problema
Questo aggiornamento di sicurezza risolve quattro vulnerabilita'
presenti in Internet Explorer.
Queste vulnerabilita' potrebbero consentire ad un aggressore remoto
l'esecuzione di codice arbitrario se un utente visualizza
una pagina web appositamente creata.
:: Software interessato
Microsoft Internet Explorer 5.01 Service Pack 4
Microsoft Internet Explorer 6 Service Pack 1
Microsoft Internet Explorer 6
Microsoft Windows Internet Explorer 7
Microsoft Windows Internet Explorer 8
Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 2
Microsoft Windows XP Service Pack 3
Microsoft Windows XP Professional x64 Edition Service Pack 2
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows Server 2003 x64 Edition Service Pack 2
Microsoft Windows Server 2003 SP2 (Itanium)
Microsoft Windows Vista
Microsoft Windows Vista Service Pack 1
Microsoft Windows Vista Service Pack 2
Microsoft Windows Vista x64 Edition
Microsoft Windows Vista x64 Edition Service Pack 1
Microsoft Windows Vista x64 Edition Service Pack 2
Microsoft Windows Server 2008 (32-bit)
Microsoft Windows Server 2008 (32-bit) Service Pack 2
Microsoft Windows Server 2008 (x64)
Microsoft Windows Server 2008 (x64) Service Pack 2
Microsoft Windows Server 2008 (Itanium)
Microsoft Windows Server 2008 (Itanium) Service Pack 2
Microsoft Windows 7 (32-bit)
Microsoft Windows 7 (x64)
Microsoft Windows Server 2008 R2 (x64)
Microsoft Windows Server 2008 R2 (Itanium)
:: Impatto
Esecuzione di codice arbitrario
Possibile compromissione del sistema
:: Soluzioni
Applicare gli aggiornamenti rilasciati da Microsoft:
http://www.microsoft.com/technet/security/Bulletin/MS09-054.mspx
:: Riferimenti
Microsoft Security Bulletin MS09-054
http://www.microsoft.com/technet/security/Bulletin/MS09-054.mspx
Secunia
http://secunia.com/advisories/36979
VuPEN
http://www.vupen.com/english/advisories/2009/2889
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2529
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2530
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2531
-----BEGIN PGP SIGNATURE-----
iQCVAwUBStXh7vOB+SpikaiRAQKgSAQAtM2UpzjRK9kZcEMp7rcDM7nO/1mJTpMJ
YRVxvBW6T2h6/vMYDBBs9gt3rM2pkwYKVuoV84jvn5/C10ipf4xdWQPq2U5P7k3l
Fnh1XiTajYPzH2GW7zinv6t2hU5R8Q417b0QR0QoRHuzjBhgOW1Y+kT4TUrAt2xW
F75qrUMz/NU=
=LUt9
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-09089
Data : 14 Ottobre 2009
Titolo : Aggiornamento cumulativo per Internet Explorer (MS09-054)
******************************************************************
:: Descrizione del problema
Questo aggiornamento di sicurezza risolve quattro vulnerabilita'
presenti in Internet Explorer.
Queste vulnerabilita' potrebbero consentire ad un aggressore remoto
l'esecuzione di codice arbitrario se un utente visualizza
una pagina web appositamente creata.
:: Software interessato
Microsoft Internet Explorer 5.01 Service Pack 4
Microsoft Internet Explorer 6 Service Pack 1
Microsoft Internet Explorer 6
Microsoft Windows Internet Explorer 7
Microsoft Windows Internet Explorer 8
Microsoft Windows 2000 Service Pack 4
Microsoft Windows XP Service Pack 2
Microsoft Windows XP Service Pack 3
Microsoft Windows XP Professional x64 Edition Service Pack 2
Microsoft Windows Server 2003 Service Pack 2
Microsoft Windows Server 2003 x64 Edition Service Pack 2
Microsoft Windows Server 2003 SP2 (Itanium)
Microsoft Windows Vista
Microsoft Windows Vista Service Pack 1
Microsoft Windows Vista Service Pack 2
Microsoft Windows Vista x64 Edition
Microsoft Windows Vista x64 Edition Service Pack 1
Microsoft Windows Vista x64 Edition Service Pack 2
Microsoft Windows Server 2008 (32-bit)
Microsoft Windows Server 2008 (32-bit) Service Pack 2
Microsoft Windows Server 2008 (x64)
Microsoft Windows Server 2008 (x64) Service Pack 2
Microsoft Windows Server 2008 (Itanium)
Microsoft Windows Server 2008 (Itanium) Service Pack 2
Microsoft Windows 7 (32-bit)
Microsoft Windows 7 (x64)
Microsoft Windows Server 2008 R2 (x64)
Microsoft Windows Server 2008 R2 (Itanium)
:: Impatto
Esecuzione di codice arbitrario
Possibile compromissione del sistema
:: Soluzioni
Applicare gli aggiornamenti rilasciati da Microsoft:
http://www.microsoft.com/technet/security/Bulletin/MS09-054.mspx
:: Riferimenti
Microsoft Security Bulletin MS09-054
http://www.microsoft.com/technet/security/Bulletin/MS09-054.mspx
Secunia
http://secunia.com/advisories/36979
VuPEN
http://www.vupen.com/english/advisories/2009/2889
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-1547
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2529
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2530
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2009-2531
-----BEGIN PGP SIGNATURE-----
iQCVAwUBStXh7vOB+SpikaiRAQKgSAQAtM2UpzjRK9kZcEMp7rcDM7nO/1mJTpMJ
YRVxvBW6T2h6/vMYDBBs9gt3rM2pkwYKVuoV84jvn5/C10ipf4xdWQPq2U5P7k3l
Fnh1XiTajYPzH2GW7zinv6t2hU5R8Q417b0QR0QoRHuzjBhgOW1Y+kT4TUrAt2xW
F75qrUMz/NU=
=LUt9
-----END PGP SIGNATURE-----