Alert GCSA-14010 - Bollettino di Sicurezza Microsoft Maggio 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-14010
Data : 14 maggio 2014
Titolo : Bollettino di Sicurezza Microsoft Maggio 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 9 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni.
MS14-021 Security Update for Internet Explorer (2965111)
MS14-022 Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2952166)
MS14-023 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2961037)
MS14-024 Vulnerability in a Microsoft Common Control Could Allow Security Feature Bypass (2961033)
MS14-025 Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege (2962486)
MS14-026 Vulnerability in .NET Framework Could Allow Elevation of Privilege (2958732)
MS14-027 Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege (2962488)
MS14-028 Vulnerability in iSCSI Could Allow Denial of Service (2962485)
MS14-029 Security Update for Internet Explorer (2962482)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows
Microsoft Office
Microsoft Internet Explorer
Microsoft SharePoint Server
Microsoft Office
Microsoft .NET Framework
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Elusione della funzione di protezione
Attacco di tipo Denial of Service
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin Summary for May 2014
http://technet.microsoft.com/en-us/security/bulletin/ms14-may
Bollettini Microsoft sulla sicurezza
http://technet.microsoft.com/it-it/security/bulletin/MS14-021
http://technet.microsoft.com/it-it/security/bulletin/MS14-022
http://technet.microsoft.com/it-it/security/bulletin/MS14-023
http://technet.microsoft.com/it-it/security/bulletin/MS14-024
http://technet.microsoft.com/it-it/security/bulletin/MS14-025
http://technet.microsoft.com/it-it/security/bulletin/MS14-026
http://technet.microsoft.com/it-it/security/bulletin/MS14-027
http://technet.microsoft.com/it-it/security/bulletin/MS14-028
http://technet.microsoft.com/it-it/security/bulletin/MS14-029
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
ISC SANS
https://isc.sans.edu/forums/diary/Microsoft+May+2014+Patch+Tuesday/18113
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1776
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0251
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1754
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1756
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1809
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1820
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1806
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1807
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0225
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0310
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1815
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFTc1EFwZxMk2USYEIRAuQOAJ9SDlFvsX3Ih1XcHz5i/YRbN8adPwCgtrJq
Py6RXDfXe6/QRlnjNk5qtBc=
=Rbk0
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-14010
Data : 14 maggio 2014
Titolo : Bollettino di Sicurezza Microsoft Maggio 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 9 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni.
MS14-021 Security Update for Internet Explorer (2965111)
MS14-022 Vulnerabilities in Microsoft SharePoint Server Could Allow Remote Code Execution (2952166)
MS14-023 Vulnerabilities in Microsoft Office Could Allow Remote Code Execution (2961037)
MS14-024 Vulnerability in a Microsoft Common Control Could Allow Security Feature Bypass (2961033)
MS14-025 Vulnerability in Group Policy Preferences Could Allow Elevation of Privilege (2962486)
MS14-026 Vulnerability in .NET Framework Could Allow Elevation of Privilege (2958732)
MS14-027 Vulnerability in Windows Shell Handler Could Allow Elevation of Privilege (2962488)
MS14-028 Vulnerability in iSCSI Could Allow Denial of Service (2962485)
MS14-029 Security Update for Internet Explorer (2962482)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows
Microsoft Office
Microsoft Internet Explorer
Microsoft SharePoint Server
Microsoft Office
Microsoft .NET Framework
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Elusione della funzione di protezione
Attacco di tipo Denial of Service
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin Summary for May 2014
http://technet.microsoft.com/en-us/security/bulletin/ms14-may
Bollettini Microsoft sulla sicurezza
http://technet.microsoft.com/it-it/security/bulletin/MS14-021
http://technet.microsoft.com/it-it/security/bulletin/MS14-022
http://technet.microsoft.com/it-it/security/bulletin/MS14-023
http://technet.microsoft.com/it-it/security/bulletin/MS14-024
http://technet.microsoft.com/it-it/security/bulletin/MS14-025
http://technet.microsoft.com/it-it/security/bulletin/MS14-026
http://technet.microsoft.com/it-it/security/bulletin/MS14-027
http://technet.microsoft.com/it-it/security/bulletin/MS14-028
http://technet.microsoft.com/it-it/security/bulletin/MS14-029
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
ISC SANS
https://isc.sans.edu/forums/diary/Microsoft+May+2014+Patch+Tuesday/18113
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1776
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0251
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1754
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1813
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1756
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1808
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1809
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1820
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1806
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1807
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0225
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0226
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-0310
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1815
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFTc1EFwZxMk2USYEIRAuQOAJ9SDlFvsX3Ih1XcHz5i/YRbN8adPwCgtrJq
Py6RXDfXe6/QRlnjNk5qtBc=
=Rbk0
-----END PGP SIGNATURE-----