Alert GCSA-11071 Microsoft Security Bullettin October 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11071
Data : 14 Ottobre 2011
Titolo : Microsoft Security Bullettin October 2011
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 8 bollettini di sicurezza
relativi a varie vulnerabilita' presenti nei
sistemi operativi Windows e nelle applicazioni: .NET, Forefront
Unified Access Gateway, Host Integration Server.
MS11-075 (2623699) vulnerabilit in Microsoft Active Accessibility
MS11-076 (2604926) vulnerabilit di Windows Media Center
MS11-077 (2567053) vulnerabilit nei driver in modalit kernel di
Windows
MS11-078 (2604930) vulnerabilit di .NET Framework e Microsoft
Silverlight
MS11-079 (2544641) vulnerabilit in Microsoft Forefront Unified
Access Gateway
MS11-080 (2592799) vulnerabilit nel driver di funzioni ausiliario
MS11-081 (2586448) Aggiornamento cumulativo per la protezione di
Internet Explorer
MS11-082 (2607670) vulnerabilit in Host Integration Server
Maggiori dettagli sono disponibili nelle segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Media Center TV Pack for Vista
Microsoft .NET Framework
Microsoft Forefront Unified Access Gateway
Internet Explorer 6, 7, 8, 9
:: Impatto
Accesso al sistema
Esecuzione di codice arbitrario
Exposure of sensitive information
Acquisizione di privilegi piu' elevati
Compromissione del sistema
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin Summary for October 2011
http://technet.microsoft.com/security/bulletin/ms11-oct
Microsoft Security Bulletin
http://www.microsoft.com/technet/security/Bulletin/MS11-075.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-076.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-077.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-078.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-079.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-080.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-081.mspx
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1247
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2009
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1985
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2003
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2011
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1253
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1895
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1896
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1897
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1969
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2012
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2005
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1993
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1995
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1996
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1997
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1998
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1999
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2000
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2007
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2008
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
ISC SANS
http://isc.sans.edu/diary.html?storyid=11779
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTpgDs/OB+SpikaiRAQKkGwQAlBRg0mtFuv2mEzjmpZ/RHsqbQ0/l0n5a
6Tibr0V/lRqYEYBrwoMkOFfrJAlaX7hX1j/+LPAIpph4haJH0invi7aUjKf85vd4
2BD+Vn/EcmQXgVXaWjROEtafIQe7VVNAdQBlfu3hC4UkvYq07PO4QavoaRuG0hBD
BgilmkySZpE=
=Goxk
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11071
Data : 14 Ottobre 2011
Titolo : Microsoft Security Bullettin October 2011
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 8 bollettini di sicurezza
relativi a varie vulnerabilita' presenti nei
sistemi operativi Windows e nelle applicazioni: .NET, Forefront
Unified Access Gateway, Host Integration Server.
MS11-075 (2623699) vulnerabilit in Microsoft Active Accessibility
MS11-076 (2604926) vulnerabilit di Windows Media Center
MS11-077 (2567053) vulnerabilit nei driver in modalit kernel di
Windows
MS11-078 (2604930) vulnerabilit di .NET Framework e Microsoft
Silverlight
MS11-079 (2544641) vulnerabilit in Microsoft Forefront Unified
Access Gateway
MS11-080 (2592799) vulnerabilit nel driver di funzioni ausiliario
MS11-081 (2586448) Aggiornamento cumulativo per la protezione di
Internet Explorer
MS11-082 (2607670) vulnerabilit in Host Integration Server
Maggiori dettagli sono disponibili nelle segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Windows Media Center TV Pack for Vista
Microsoft .NET Framework
Microsoft Forefront Unified Access Gateway
Internet Explorer 6, 7, 8, 9
:: Impatto
Accesso al sistema
Esecuzione di codice arbitrario
Exposure of sensitive information
Acquisizione di privilegi piu' elevati
Compromissione del sistema
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin Summary for October 2011
http://technet.microsoft.com/security/bulletin/ms11-oct
Microsoft Security Bulletin
http://www.microsoft.com/technet/security/Bulletin/MS11-075.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-076.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-077.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-078.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-079.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-080.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-081.mspx
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1247
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2009
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1985
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2003
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2011
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1253
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1895
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1896
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1897
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1969
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2012
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2005
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1993
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1995
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1996
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1997
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1998
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1999
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2000
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2001
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2007
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2008
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
ISC SANS
http://isc.sans.edu/diary.html?storyid=11779
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTpgDs/OB+SpikaiRAQKkGwQAlBRg0mtFuv2mEzjmpZ/RHsqbQ0/l0n5a
6Tibr0V/lRqYEYBrwoMkOFfrJAlaX7hX1j/+LPAIpph4haJH0invi7aUjKf85vd4
2BD+Vn/EcmQXgVXaWjROEtafIQe7VVNAdQBlfu3hC4UkvYq07PO4QavoaRuG0hBD
BgilmkySZpE=
=Goxk
-----END PGP SIGNATURE-----