Alert GCSA-11013 - MS11-012 Vulnerabilita' in Windows Kernel-Mode
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11013
Data : 11 febbraio 2011
Titolo : MS11-012 Vulnerabilita' in Windows Kernel-Mode Drivers (2479628)
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato un aggiornamento di sicurezza
che risolve cinque vulnerabilita' presenti nei drivers
kernel-mode di Windows.
Le vulnerabilita' potrebbero consentire un incremento dei privilegi
se un aggressore in possesso di credenziali locali valide
riesce a lanciare un'applicazione artefatta.
Le vulnerabilita' non possono essere sfruttate da remoto o
da utenti anonimi.
:: Software interessato
Windows XP SP3
Windows XP Pro x64 Edition SP2
Windows Vista SP1
Windows Vista SP2
Windows Vista x64 Edition SP1
Windows Vista x64 Edition SP2
Windows 7 (32-bit)
Windows 7 (x64)
Windows Server 2003 SP2
Windows Server 2003 x64 Edition SP2
Windows Server 2003 SP2 (Itanium)
Windows Server 2008 (32-bit)
Windows Server 2008 (32-bit) SP2
Windows Server 2008 (x64)
Windows Server 2008 (x64) SP2
Windows Server 2008 (Itanium)
Windows Server 2008 (Itanium) SP2
Windows Server 2008 R2 (x64)
Windows Server 2008 R2 (Itanium)
:: Impatto
Elevation of privileges
Compromissione del sistema
:: Soluzioni
Installare manualmente la patch indicata nel bollettino Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin
http://www.microsoft.com/technet/security/Bulletin/MS11-012.mspx
Microsoft Knowledge Base
http://support.microsoft.com/kb/2479628
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0086
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0087
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0088
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0090
ISC SANS
http://isc.sans.edu/diary.html?storyid=10375
Vupen Security
http://www.vupen.com/english/advisories/2011/0325
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTVT68vOB+SpikaiRAQI4dAP/Q530sAKLew1kUBlmpNbXnEiO8Fyzxj0/
mcHCcyUeBopyohZCDdFQljdc7W5q8I3/pDTCOavmSBPEDcu7G2UYaa4bGR3JhxHt
ZEj9XnOMq2ZfBvAY9q8Uzu+AGk0NPnzUA9xYXYpFsO83tWzcYumtSomdQhKVE45i
ttLC9NJOP+M=
=Ei17
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-11013
Data : 11 febbraio 2011
Titolo : MS11-012 Vulnerabilita' in Windows Kernel-Mode Drivers (2479628)
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato un aggiornamento di sicurezza
che risolve cinque vulnerabilita' presenti nei drivers
kernel-mode di Windows.
Le vulnerabilita' potrebbero consentire un incremento dei privilegi
se un aggressore in possesso di credenziali locali valide
riesce a lanciare un'applicazione artefatta.
Le vulnerabilita' non possono essere sfruttate da remoto o
da utenti anonimi.
:: Software interessato
Windows XP SP3
Windows XP Pro x64 Edition SP2
Windows Vista SP1
Windows Vista SP2
Windows Vista x64 Edition SP1
Windows Vista x64 Edition SP2
Windows 7 (32-bit)
Windows 7 (x64)
Windows Server 2003 SP2
Windows Server 2003 x64 Edition SP2
Windows Server 2003 SP2 (Itanium)
Windows Server 2008 (32-bit)
Windows Server 2008 (32-bit) SP2
Windows Server 2008 (x64)
Windows Server 2008 (x64) SP2
Windows Server 2008 (Itanium)
Windows Server 2008 (Itanium) SP2
Windows Server 2008 R2 (x64)
Windows Server 2008 R2 (Itanium)
:: Impatto
Elevation of privileges
Compromissione del sistema
:: Soluzioni
Installare manualmente la patch indicata nel bollettino Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Microsoft Security Bulletin
http://www.microsoft.com/technet/security/Bulletin/MS11-012.mspx
Microsoft Knowledge Base
http://support.microsoft.com/kb/2479628
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
Mitre's CVE ID
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0086
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0087
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0088
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0089
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0090
ISC SANS
http://isc.sans.edu/diary.html?storyid=10375
Vupen Security
http://www.vupen.com/english/advisories/2011/0325
-----BEGIN PGP SIGNATURE-----
iQCVAwUBTVT68vOB+SpikaiRAQI4dAP/Q530sAKLew1kUBlmpNbXnEiO8Fyzxj0/
mcHCcyUeBopyohZCDdFQljdc7W5q8I3/pDTCOavmSBPEDcu7G2UYaa4bGR3JhxHt
ZEj9XnOMq2ZfBvAY9q8Uzu+AGk0NPnzUA9xYXYpFsO83tWzcYumtSomdQhKVE45i
ttLC9NJOP+M=
=Ei17
-----END PGP SIGNATURE-----