Alert GCSA-07035 - Vulnerabilita' multiple in Windows CSRSS (MS07-021)
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-07035
Data : 11 Aprile 2007
Titolo : Vulnerabilita' multiple in Windows CSRSS (MS07-021)
******************************************************************
:: Descrizione del problema:
Sono state riscontrate tre vulnerabilita' in Windows CSRSS (Client/Server
Run-time Subsystem)
che potrebbero essere sfruttate da un attaccante locale o remoto per
guadagnare privilegi
piu' elevati, causare un Denial of Service, ottenere il completo controllo di
un sistema che ne sia affetto:
- - MsgBox (CSRSS) Remote Code Execution Vulnerability (CVE-2006-6696)
- - CSRSS Local Elevation of Privilege Vulnerability (CVE-2007-1209)
- - CSRSS DoS Vulnerability (CVE-2006-6797)
Per ogni singola vulnerabilita' sono disponibili informazioni tecniche
dettagliate nella sezione "Vulnerability Details" del bollettino Microsoft:
http://www.microsoft.com/technet/security/bulletin/MS07-021.mspx
:: Piattaforme interessate:
- - Microsoft Windows 2000 SP4
- - Microsoft Windows XP SP2
- - Microsoft Windows XP Pro x64 Edition
- - Microsoft Windows XP Pro x64 Edition SP2
- - Microsoft Windows Server 2003
- - Microsoft Windows Server 2003 SP1
- - Microsoft Windows Server 2003 SP2
- - Microsoft Windows Server 2003 (Itanium)
- - Microsoft Windows Server 2003 SP1 (Itanium)
- - Microsoft Windows Server 2003 SP2 (Itanium)
- - Microsoft Windows Server 2003 x64 Edition
- - Microsoft Windows Server 2003 x64 Edition SP2
- - Microsoft Windows Vista
- - Microsoft Windows Vista x64 Edition
:: Impatto:
Privilege escalation
Denial of Service
Ottenimento del completo controllo del sistema
:: Soluzioni:
Applicare gli aggiornamenti rilasciati da Microsoft:
http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx
:: Riferimenti:
Microsoft Security Bulletin MS07-021:
http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx
FrSIRT:
http://www.frsirt.com/english/advisories/2007/1325
Secunia:
http://secunia.com/advisories/24823/
Mitre CVE:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6696
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1209
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6797
-----BEGIN PGP SIGNATURE-----
iQCVAwUBRhyqsfOB+SpikaiRAQLJsgQAiuh0SRzpl4bhV1v6xYTBKgFmsO5XKq57
kd3jK3mZRfFJePedK9y9S03q5q+9aEm9cvKSZbD1gnehoBNiXQAiwYtm497MGlLJ
FP2EqQn5cs8gAffocMzztKWcyGo5J0lmQQmPLE3bG2ivWHs2F0DkHUR8GMS6DNso
Yda1kOBcwWE=
=TiyJ
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-07035
Data : 11 Aprile 2007
Titolo : Vulnerabilita' multiple in Windows CSRSS (MS07-021)
******************************************************************
:: Descrizione del problema:
Sono state riscontrate tre vulnerabilita' in Windows CSRSS (Client/Server
Run-time Subsystem)
che potrebbero essere sfruttate da un attaccante locale o remoto per
guadagnare privilegi
piu' elevati, causare un Denial of Service, ottenere il completo controllo di
un sistema che ne sia affetto:
- - MsgBox (CSRSS) Remote Code Execution Vulnerability (CVE-2006-6696)
- - CSRSS Local Elevation of Privilege Vulnerability (CVE-2007-1209)
- - CSRSS DoS Vulnerability (CVE-2006-6797)
Per ogni singola vulnerabilita' sono disponibili informazioni tecniche
dettagliate nella sezione "Vulnerability Details" del bollettino Microsoft:
http://www.microsoft.com/technet/security/bulletin/MS07-021.mspx
:: Piattaforme interessate:
- - Microsoft Windows 2000 SP4
- - Microsoft Windows XP SP2
- - Microsoft Windows XP Pro x64 Edition
- - Microsoft Windows XP Pro x64 Edition SP2
- - Microsoft Windows Server 2003
- - Microsoft Windows Server 2003 SP1
- - Microsoft Windows Server 2003 SP2
- - Microsoft Windows Server 2003 (Itanium)
- - Microsoft Windows Server 2003 SP1 (Itanium)
- - Microsoft Windows Server 2003 SP2 (Itanium)
- - Microsoft Windows Server 2003 x64 Edition
- - Microsoft Windows Server 2003 x64 Edition SP2
- - Microsoft Windows Vista
- - Microsoft Windows Vista x64 Edition
:: Impatto:
Privilege escalation
Denial of Service
Ottenimento del completo controllo del sistema
:: Soluzioni:
Applicare gli aggiornamenti rilasciati da Microsoft:
http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx
:: Riferimenti:
Microsoft Security Bulletin MS07-021:
http://www.microsoft.com/technet/security/Bulletin/MS07-021.mspx
FrSIRT:
http://www.frsirt.com/english/advisories/2007/1325
Secunia:
http://secunia.com/advisories/24823/
Mitre CVE:
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6696
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2007-1209
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2006-6797
-----BEGIN PGP SIGNATURE-----
iQCVAwUBRhyqsfOB+SpikaiRAQLJsgQAiuh0SRzpl4bhV1v6xYTBKgFmsO5XKq57
kd3jK3mZRfFJePedK9y9S03q5q+9aEm9cvKSZbD1gnehoBNiXQAiwYtm497MGlLJ
FP2EqQn5cs8gAffocMzztKWcyGo5J0lmQQmPLE3bG2ivWHs2F0DkHUR8GMS6DNso
Yda1kOBcwWE=
=TiyJ
-----END PGP SIGNATURE-----