Alert GCSA-14034 - Bollettino di Sicurezza Microsoft Ottobre 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14034
Data: 15 Ottobre 2014
Titolo: Bollettino di Sicurezza Microsoft Ottobre 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 8 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-056 Aggiornamento cumulativo per la protezione di Internet Explorer (2987107)
MS14-057 Vulnerabilita' in .NET Framework (3000414)
MS14-058 Vulnerabilita' nei driver in modalita' kernel (3000061)
MS14-059 Vulnerabilita' in ASP.NET MVC (2990942)
MS14-060 Vulnerabilita' in Windows OLE (3000869)
MS14-061 vulnerabilita' in Microsoft Word e nelle applicazioni Web di Office (3000434)
MS14-062 vulnerabilita' in Accodamento messaggi (2993254)
MS14-063 vulnerabilita' nel driver di partizione del disco FAT32 (2998579)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Internet Explorer
Microsoft Windows
Microsoft .NET Framework
Strumenti per gli sviluppatori Microsoft
Microsoft Office
Microsoft Office Services
Microsoft Office Web Apps
:: Impatto
elusione della funzione di protezione
esecuzione di codice in modalita' remota
acquisizione di privilegi piu' elevati
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, ottobre 2014
https://technet.microsoft.com/it-it/library/security/ms14-oct
MSRC October 2014 Updates
http://blogs.technet.com/b/msrc/archive/2014/10/14/october-2014-updates.aspx
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/ms14-056
https://technet.microsoft.com/it-it/library/security/MS14-057
https://technet.microsoft.com/it-it/library/security/MS14-058
https://technet.microsoft.com/it-it/library/security/MS14-059
https://technet.microsoft.com/it-it/library/security/MS14-060
https://technet.microsoft.com/it-it/library/security/MS14-061
https://technet.microsoft.com/it-it/library/security/MS14-062
https://technet.microsoft.com/it-it/library/security/MS14-063
Microsoft Knowledge Base
http://support.microsoft.com/kb/2987107
http://support.microsoft.com/kb/3000414
http://support.microsoft.com/kb/3000061
http://support.microsoft.com/kb/2990942
http://support.microsoft.com/kb/3000869
http://support.microsoft.com/kb/3000434
http://support.microsoft.com/kb/2993254
http://support.microsoft.com/kb/2998579
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4073
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4075
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4113
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4114
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4115
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4117
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4121
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4122
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4123
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4124
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4126
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4127
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4128
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4129
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4130
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4132
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4133
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4134
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4137
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4138
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4140
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4141
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4148
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4971
SANS ISC Diary
https://isc.sans.edu/diary.html?storyid=18819
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFUPo4xwZxMk2USYEIRAl1BAJ9SKungSk78mAYKMTfsT+KBX/CjqgCeK4lS
ecjhUGsbuPf//wgNVrOpSPY=
=u6Cl
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-14034
Data: 15 Ottobre 2014
Titolo: Bollettino di Sicurezza Microsoft Ottobre 2014
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 8 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS14-056 Aggiornamento cumulativo per la protezione di Internet Explorer (2987107)
MS14-057 Vulnerabilita' in .NET Framework (3000414)
MS14-058 Vulnerabilita' nei driver in modalita' kernel (3000061)
MS14-059 Vulnerabilita' in ASP.NET MVC (2990942)
MS14-060 Vulnerabilita' in Windows OLE (3000869)
MS14-061 vulnerabilita' in Microsoft Word e nelle applicazioni Web di Office (3000434)
MS14-062 vulnerabilita' in Accodamento messaggi (2993254)
MS14-063 vulnerabilita' nel driver di partizione del disco FAT32 (2998579)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Internet Explorer
Microsoft Windows
Microsoft .NET Framework
Strumenti per gli sviluppatori Microsoft
Microsoft Office
Microsoft Office Services
Microsoft Office Web Apps
:: Impatto
elusione della funzione di protezione
esecuzione di codice in modalita' remota
acquisizione di privilegi piu' elevati
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza, ottobre 2014
https://technet.microsoft.com/it-it/library/security/ms14-oct
MSRC October 2014 Updates
http://blogs.technet.com/b/msrc/archive/2014/10/14/october-2014-updates.aspx
Bollettini Microsoft sulla sicurezza
https://technet.microsoft.com/it-it/library/security/ms14-056
https://technet.microsoft.com/it-it/library/security/MS14-057
https://technet.microsoft.com/it-it/library/security/MS14-058
https://technet.microsoft.com/it-it/library/security/MS14-059
https://technet.microsoft.com/it-it/library/security/MS14-060
https://technet.microsoft.com/it-it/library/security/MS14-061
https://technet.microsoft.com/it-it/library/security/MS14-062
https://technet.microsoft.com/it-it/library/security/MS14-063
Microsoft Knowledge Base
http://support.microsoft.com/kb/2987107
http://support.microsoft.com/kb/3000414
http://support.microsoft.com/kb/3000061
http://support.microsoft.com/kb/2990942
http://support.microsoft.com/kb/3000869
http://support.microsoft.com/kb/3000434
http://support.microsoft.com/kb/2993254
http://support.microsoft.com/kb/2998579
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4073
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4075
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4113
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4114
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4115
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4117
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4121
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4122
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4123
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4124
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4126
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4127
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4128
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4129
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4130
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4132
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4133
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4134
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4137
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4138
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4140
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4141
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4148
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-4971
SANS ISC Diary
https://isc.sans.edu/diary.html?storyid=18819
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFUPo4xwZxMk2USYEIRAl1BAJ9SKungSk78mAYKMTfsT+KBX/CjqgCeK4lS
ecjhUGsbuPf//wgNVrOpSPY=
=u6Cl
-----END PGP SIGNATURE-----