Alert GCSA-11059 - Microsoft Security Bullettin August 2011
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11059
Data : 10 Agosto 2011
Titolo : Microsoft Security Bullettin August 2011
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 13 bollettini di sicurezza
relativi a varie vulnerabilita' presenti nei
sistemi operativi Windows e nell'applicazione Visio.
MS11-057 (2559049) Cumulative Security Update for Internet Explorer
MS11-058 (2562485) Vulnerabilities in DNS Server
MS11-059 (2560656) Vulnerability in Data Access Components
MS11-060 (2560978) Vulnerabilities in Microsoft Visio
MS11-061 (2546250) Vulnerability in Remote Desktop Web Access
MS11-062 (2566454) Vulnerability in Remote Access Service NDISTAPI Driver
MS11-063 (2567680) Vulnerability in Windows Client/Server Run-time Subsystem
MS11-064 (2563894) Vulnerabilities in TCP/IP Stack
MS11-065 (2570222) Vulnerability in Remote Desktop Protocol
MS11-066 (2567943) Vulnerability in ASP.NET Chart Control
MS11-067 (2578230) Vulnerability in Report Viewer
MS11-068 (2556532) Vulnerability in Windows Kernel
MS11-069 (2567951) Vulnerability in .NET Framework
Maggiori dettagli sono disponibili nelle segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Visio
Microsoft Visual Studio 2005 SP1
Microsoft Report Viewer 2005 SP1 Redistributable
:: Impatto
Accesso al sistema
Esecuzione di codice arbitrario
Exposure of sensitive information
Acquisizione di privilegi piu' elevati
Compromissione del sistema
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin Summary for August 2011
http://www.microsoft.com/technet/security/bulletin/ms11-aug.mspx
Microsoft Security Bulletin
http://www.microsoft.com/technet/security/Bulletin/MS11-057.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-058.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-059.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-060.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-061.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-062.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-063.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-064.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-065.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-066.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-067.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-068.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-069.mspx
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1257
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1960
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1961
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1962
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1963
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1964
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1966
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1970
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1975
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1972
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1979
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1263
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1974
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1967
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1871
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1965
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1968
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1977
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1976
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1971
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1978
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
ISC SANS
http://isc.sans.edu/diary.html?storyid=11341
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTkJZ3fOB+SpikaiRAQLztAP/WhkW7q0+tBlg5L5C1wWDI2UiqKdadI7n
4SeHQjQFLtect/I08W8HhskMCRhbUxwtF8ub1MqbRkfhwmo7sGRS9HCLN+Ce1A7q
kH/oLrHZYgX6m999YneUt5ENT1ZCnqs7yv5is985gwYqko1OjW6rLRosdU+fUNUt
7UTPPCkqJQA=
=/hvl
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11059
Data : 10 Agosto 2011
Titolo : Microsoft Security Bullettin August 2011
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 13 bollettini di sicurezza
relativi a varie vulnerabilita' presenti nei
sistemi operativi Windows e nell'applicazione Visio.
MS11-057 (2559049) Cumulative Security Update for Internet Explorer
MS11-058 (2562485) Vulnerabilities in DNS Server
MS11-059 (2560656) Vulnerability in Data Access Components
MS11-060 (2560978) Vulnerabilities in Microsoft Visio
MS11-061 (2546250) Vulnerability in Remote Desktop Web Access
MS11-062 (2566454) Vulnerability in Remote Access Service NDISTAPI Driver
MS11-063 (2567680) Vulnerability in Windows Client/Server Run-time Subsystem
MS11-064 (2563894) Vulnerabilities in TCP/IP Stack
MS11-065 (2570222) Vulnerability in Remote Desktop Protocol
MS11-066 (2567943) Vulnerability in ASP.NET Chart Control
MS11-067 (2578230) Vulnerability in Report Viewer
MS11-068 (2556532) Vulnerability in Windows Kernel
MS11-069 (2567951) Vulnerability in .NET Framework
Maggiori dettagli sono disponibili nelle segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows Vista
Microsoft Windows XP
Microsoft Windows 7
Microsoft Windows Server 2003
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
Microsoft Visio
Microsoft Visual Studio 2005 SP1
Microsoft Report Viewer 2005 SP1 Redistributable
:: Impatto
Accesso al sistema
Esecuzione di codice arbitrario
Exposure of sensitive information
Acquisizione di privilegi piu' elevati
Compromissione del sistema
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin Summary for August 2011
http://www.microsoft.com/technet/security/bulletin/ms11-aug.mspx
Microsoft Security Bulletin
http://www.microsoft.com/technet/security/Bulletin/MS11-057.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-058.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-059.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-060.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-061.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-062.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-063.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-064.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-065.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-066.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-067.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-068.mspx
http://www.microsoft.com/technet/security/Bulletin/MS11-069.mspx
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1257
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1960
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1961
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1962
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1963
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1964
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-2383
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1966
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1970
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1975
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1972
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1979
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1263
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1974
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1967
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1871
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1965
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1968
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1977
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1976
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1971
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1978
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
ISC SANS
http://isc.sans.edu/diary.html?storyid=11341
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTkJZ3fOB+SpikaiRAQLztAP/WhkW7q0+tBlg5L5C1wWDI2UiqKdadI7n
4SeHQjQFLtect/I08W8HhskMCRhbUxwtF8ub1MqbRkfhwmo7sGRS9HCLN+Ce1A7q
kH/oLrHZYgX6m999YneUt5ENT1ZCnqs7yv5is985gwYqko1OjW6rLRosdU+fUNUt
7UTPPCkqJQA=
=/hvl
-----END PGP SIGNATURE-----