Alert GCSA-17061 - Microsoft Security Update Ottobre 2017
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17061
Data: 13 Ottobre 2017
Titolo: Microsoft Security Update Ottobre 2017
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato nuovi aggiornamenti mirati a risolvere
le vulnerabilità presenti nei sistemi operativi Windows e in vari
software applicativi.
Un attaccante remoto potrebbe sfruttare le vulnerabilità per
prendere il controllo del sistema affetto.
Maggiori dettagli nella sezione "Riferimenti".
:: Software interessato
Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
Skype for Business and Lync
Chakra Core
:: Impatto
Esecuzione remota di codice arbitrario
Acquisizione di privilegi piu' elevati
Denial of service
Information Disclosure
:: Soluzioni
Per default l'installazione degli aggiornamenti
avviene in maniera automatica.
Windows Update domande frequenti
https://support.microsoft.com/it-it/help/12373/windows-update-faq
Ulteriori dettagli e known issues nella sezione "Release Notes":
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/313ae481-3088-e711-80e2-000d3a32fc99
:: Riferimenti
Microsoft Security Update Summary
https://portal.msrc.microsoft.com/en-us/security-guidance/summary
https://portal.msrc.microsoft.com/en-us/security-guidance
Security Tracker
http://www.securitytracker.com/id/1039526
http://www.securitytracker.com/id/1039527
http://www.securitytracker.com/id/1039528
http://www.securitytracker.com/id/1039529
http://www.securitytracker.com/id/1039530
http://www.securitytracker.com/id/1039532
http://www.securitytracker.com/id/1039533
http://www.securitytracker.com/id/1039534
http://www.securitytracker.com/id/1039535
http://www.securitytracker.com/id/1039536
http://www.securitytracker.com/id/1039537
http://www.securitytracker.com/id/1039538
http://www.securitytracker.com/id/1039539
http://www.securitytracker.com/id/1039540
http://www.securitytracker.com/id/1039541
http://www.securitytracker.com/id/1039542
SANS ISC Diary
https://isc.sans.edu/forums/diary/October+2017+Security+Updates/22916/
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAlngc18ACgkQwZxMk2USYEJKqwCePLqQ8JPNPYoT8Gsa1NDgraAO
u40AoNowiBl3sRRUXpRjGfl+V4guiPRo
=1bve
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID: GCSA-17061
Data: 13 Ottobre 2017
Titolo: Microsoft Security Update Ottobre 2017
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato nuovi aggiornamenti mirati a risolvere
le vulnerabilità presenti nei sistemi operativi Windows e in vari
software applicativi.
Un attaccante remoto potrebbe sfruttare le vulnerabilità per
prendere il controllo del sistema affetto.
Maggiori dettagli nella sezione "Riferimenti".
:: Software interessato
Internet Explorer
Microsoft Edge
Microsoft Windows
Microsoft Office and Microsoft Office Services and Web Apps
Skype for Business and Lync
Chakra Core
:: Impatto
Esecuzione remota di codice arbitrario
Acquisizione di privilegi piu' elevati
Denial of service
Information Disclosure
:: Soluzioni
Per default l'installazione degli aggiornamenti
avviene in maniera automatica.
Windows Update domande frequenti
https://support.microsoft.com/it-it/help/12373/windows-update-faq
Ulteriori dettagli e known issues nella sezione "Release Notes":
https://portal.msrc.microsoft.com/en-us/security-guidance/releasenotedetail/313ae481-3088-e711-80e2-000d3a32fc99
:: Riferimenti
Microsoft Security Update Summary
https://portal.msrc.microsoft.com/en-us/security-guidance/summary
https://portal.msrc.microsoft.com/en-us/security-guidance
Security Tracker
http://www.securitytracker.com/id/1039526
http://www.securitytracker.com/id/1039527
http://www.securitytracker.com/id/1039528
http://www.securitytracker.com/id/1039529
http://www.securitytracker.com/id/1039530
http://www.securitytracker.com/id/1039532
http://www.securitytracker.com/id/1039533
http://www.securitytracker.com/id/1039534
http://www.securitytracker.com/id/1039535
http://www.securitytracker.com/id/1039536
http://www.securitytracker.com/id/1039537
http://www.securitytracker.com/id/1039538
http://www.securitytracker.com/id/1039539
http://www.securitytracker.com/id/1039540
http://www.securitytracker.com/id/1039541
http://www.securitytracker.com/id/1039542
SANS ISC Diary
https://isc.sans.edu/forums/diary/October+2017+Security+Updates/22916/
GARR CERT Newsletter subscribe/unsubscribe:
http://www.cert.garr.it/alert/ricevi-gli-alert-di-cert
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
iEYEARECAAYFAlngc18ACgkQwZxMk2USYEJKqwCePLqQ8JPNPYoT8Gsa1NDgraAO
u40AoNowiBl3sRRUXpRjGfl+V4guiPRo
=1bve
-----END PGP SIGNATURE-----