Alert GCSA-13046 - Bollettino di Sicurezza Microsoft Agosto 2013
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-13046
Data : 14 Agosto 2013
Titolo : Bollettino di Sicurezza Microsoft Agosto 2013
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 8 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS13-059 Aggiornamento cumulativo per Internet Explorer
MS13-060 Vulnerabilita' in Unicode Scripts Processor
MS13-061 Vulnerabilita' in Microsoft Exchange Server
MS13-062 Vulnerabilita' in Windows RPC (Remote Procedure Call)
MS13-063 Vulnerabilita' del kernel di Windows
MS13-064 Vulnerabilita' in Driver NAT Windows
MS13-065 Vulnerabilita' in ICMPv6
MS13-066 Vulnerabilita' di Active Directory Federation Services
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows (Internet Explorer)
Microsoft Exchange Server
Active Directory Federation Services (Windows Server)
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Denial of Service
Rivelazione di dati sensibili
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza - Agosto 2013
http://technet.microsoft.com/it-it/security/bulletin/ms13-aug
Bollettini Microsoft sulla sicurezza
http://technet.microsoft.com/it-it/security/bulletin/MS13-059
http://technet.microsoft.com/it-it/security/bulletin/MS13-060
http://technet.microsoft.com/it-it/security/bulletin/MS13-061
http://technet.microsoft.com/it-it/security/bulletin/MS13-062
http://technet.microsoft.com/it-it/security/bulletin/MS13-063
http://technet.microsoft.com/it-it/security/bulletin/MS13-064
http://technet.microsoft.com/it-it/security/bulletin/MS13-065
http://technet.microsoft.com/it-it/security/bulletin/MS13-066
Microsoft Knowledge Base
http://support.microsoft.com/kb/2862772
http://support.microsoft.com/kb/2850869
http://support.microsoft.com/kb/2876063
http://support.microsoft.com/kb/2849470
http://support.microsoft.com/kb/2859537
http://support.microsoft.com/kb/2849568
http://support.microsoft.com/kb/2868623
http://support.microsoft.com/kb/2873872
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3184
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3188
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3189
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3190
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3191
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3192
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3193
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3194
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3199
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3181
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2393
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3776
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3781
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3175
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2556
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3196
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3198
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3183
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3185
SANS ISC Diary
http://isc.sans.edu/diary.html?storyid=16358
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFSC5XawZxMk2USYEIRAm96AKDF8VycFjsvcWgcze8ROXcLn8C2FwCdEK9T
i6qX6ScRivIuIO0sWIsGiUU=
=i48z
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-13046
Data : 14 Agosto 2013
Titolo : Bollettino di Sicurezza Microsoft Agosto 2013
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 8 bollettini di sicurezza relativi
a vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS13-059 Aggiornamento cumulativo per Internet Explorer
MS13-060 Vulnerabilita' in Unicode Scripts Processor
MS13-061 Vulnerabilita' in Microsoft Exchange Server
MS13-062 Vulnerabilita' in Windows RPC (Remote Procedure Call)
MS13-063 Vulnerabilita' del kernel di Windows
MS13-064 Vulnerabilita' in Driver NAT Windows
MS13-065 Vulnerabilita' in ICMPv6
MS13-066 Vulnerabilita' di Active Directory Federation Services
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
:: Software interessato
Microsoft Windows (Internet Explorer)
Microsoft Exchange Server
Active Directory Federation Services (Windows Server)
:: Impatto
Esecuzione di codice in modalita' remota
Acquisizione di privilegi piu' elevati
Denial of Service
Rivelazione di dati sensibili
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza - Agosto 2013
http://technet.microsoft.com/it-it/security/bulletin/ms13-aug
Bollettini Microsoft sulla sicurezza
http://technet.microsoft.com/it-it/security/bulletin/MS13-059
http://technet.microsoft.com/it-it/security/bulletin/MS13-060
http://technet.microsoft.com/it-it/security/bulletin/MS13-061
http://technet.microsoft.com/it-it/security/bulletin/MS13-062
http://technet.microsoft.com/it-it/security/bulletin/MS13-063
http://technet.microsoft.com/it-it/security/bulletin/MS13-064
http://technet.microsoft.com/it-it/security/bulletin/MS13-065
http://technet.microsoft.com/it-it/security/bulletin/MS13-066
Microsoft Knowledge Base
http://support.microsoft.com/kb/2862772
http://support.microsoft.com/kb/2850869
http://support.microsoft.com/kb/2876063
http://support.microsoft.com/kb/2849470
http://support.microsoft.com/kb/2859537
http://support.microsoft.com/kb/2849568
http://support.microsoft.com/kb/2868623
http://support.microsoft.com/kb/2873872
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre CVE
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3184
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3186
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3187
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3188
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3189
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3190
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3191
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3192
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3193
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3194
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3199
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3181
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2393
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3776
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3781
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3175
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-2556
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3196
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3197
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3198
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3182
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3183
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-3185
SANS ISC Diary
http://isc.sans.edu/diary.html?storyid=16358
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
iD8DBQFSC5XawZxMk2USYEIRAm96AKDF8VycFjsvcWgcze8ROXcLn8C2FwCdEK9T
i6qX6ScRivIuIO0sWIsGiUU=
=i48z
-----END PGP SIGNATURE-----