Alert GCSA-12046 - Microsoft Security Bullettin August 2012
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-12046
Data : 16 Agosto 2012
Titolo : Microsoft Security Bullettin August 2012
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 9 bollettini di sicurezza relativi
a varie vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS12-052 Cumulative Security Update for Internet Explorer (2722913)
MS12-053 Vulnerability in Remote Desktop Could Allow Remote Code Execution
(2723135)
MS12-054 Vulnerabilities in Windows Networking Components Could Allow
Remote Code Execution (2733594)
MS12-055 Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation
of Privilege (2731847)
MS12-056 Vulnerability in JScript and VBScript Engines Could Allow Remote
Code Execution (2706045)
MS12-057 Vulnerability in Microsoft Office Could Allow Remote Code
Execution (2731879)
MS12-058 Vulnerabilities in Microsoft Exchange Server WebReady Document
Viewing Could Allow Remote Code Execution (2740358)
MS12-059 Vulnerability in Microsoft Visio Could Allow Remote Code Execution
(2733918)
MS12-060 Vulnerability in Windows Common Controls Could Allow Remote Code
Execution (2720573)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
Problemi Noti: L'articolo della Microsoft Knowledge Base 2731879
(http://support.microsoft.com/kb/2731879) descrive i problemi
attualmente conosciuti che gli utenti potrebbero riscontrare
durante l'installazione dell'aggiornamento per la protezione
MS12-057
:: Software interessato
Microsoft Windows
Microsoft Internet Explorer
Microsoft Office
Microsoft Developer Tools
Microsoft Server Software
Microsoft SQL Server
Microsoft Exchange
:: Impatto
Esecuzione remota di codice arbitrario
Acquisizione di privilegi piu' elevati
Esposizione di informazioni sensibili
Elusione di configurazioni di sicurezza
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza - agosto 2012
http://technet.microsoft.com/en-us/security/bulletin/ms12-aug
Bollettini Microsoft sulla sicurezza
http://go.microsoft.com/fwlink/?LinkId=255327
http://go.microsoft.com/fwlink/?LinkId=257906
http://go.microsoft.com/fwlink/?LinkId=257914
http://go.microsoft.com/fwlink/?LinkId=257907
http://go.microsoft.com/fwlink/?LinkId=256487
http://go.microsoft.com/fwlink/?LinkID=257684
http://go.microsoft.com/fwlink/?LinkId=259630
http://go.microsoft.com/fwlink/?LinkId=255002
http://go.microsoft.com/fwlink/?LinkId=254386
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
SANS ISC Diary
http://isc.sans.edu/diary.html?storyid=13900&rss
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1526
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2521
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2522
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2523
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2526
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1850
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1851
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1852
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1853
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2527
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2523
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2524
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1888
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1856
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1766
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1767
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1768
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1769
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1770
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1771
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1772
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1773
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3106
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3107
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3108
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3109
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3110
-----BEGIN PGP SIGNATURE-----
iD8DBQFQLM6awZxMk2USYEIRArkHAKC0gxwvIMOBFrep/fDyu3qmjquHZQCfcwFo
7HJEl2L+XczmVoowYh2L89Q=
=HF5x
-----END PGP SIGNATURE-----
Hash: SHA1
******************************************************************
Alert ID : GCSA-12046
Data : 16 Agosto 2012
Titolo : Microsoft Security Bullettin August 2012
******************************************************************
:: Descrizione del problema
Microsoft ha rilasciato 9 bollettini di sicurezza relativi
a varie vulnerabilita' presenti nei sistemi operativi Windows
e in altre applicazioni:
MS12-052 Cumulative Security Update for Internet Explorer (2722913)
MS12-053 Vulnerability in Remote Desktop Could Allow Remote Code Execution
(2723135)
MS12-054 Vulnerabilities in Windows Networking Components Could Allow
Remote Code Execution (2733594)
MS12-055 Vulnerability in Windows Kernel-Mode Drivers Could Allow Elevation
of Privilege (2731847)
MS12-056 Vulnerability in JScript and VBScript Engines Could Allow Remote
Code Execution (2706045)
MS12-057 Vulnerability in Microsoft Office Could Allow Remote Code
Execution (2731879)
MS12-058 Vulnerabilities in Microsoft Exchange Server WebReady Document
Viewing Could Allow Remote Code Execution (2740358)
MS12-059 Vulnerability in Microsoft Visio Could Allow Remote Code Execution
(2733918)
MS12-060 Vulnerability in Windows Common Controls Could Allow Remote Code
Execution (2720573)
Maggiori dettagli sono disponibili nella segnalazioni ufficiali
alla sezione "Riferimenti".
Problemi Noti: L'articolo della Microsoft Knowledge Base 2731879
(http://support.microsoft.com/kb/2731879) descrive i problemi
attualmente conosciuti che gli utenti potrebbero riscontrare
durante l'installazione dell'aggiornamento per la protezione
MS12-057
:: Software interessato
Microsoft Windows
Microsoft Internet Explorer
Microsoft Office
Microsoft Developer Tools
Microsoft Server Software
Microsoft SQL Server
Microsoft Exchange
:: Impatto
Esecuzione remota di codice arbitrario
Acquisizione di privilegi piu' elevati
Esposizione di informazioni sensibili
Elusione di configurazioni di sicurezza
:: Soluzioni
Installare manualmente le patch indicate nei bollettini Microsoft,
oppure utilizzare uno degli strumenti di aggiornamento come:
Aggiornamenti Automatici, Windows Update, Microsoft Update,
Windows Server Update Services, Systems Management Server.
:: Riferimenti
Riepilogo dei bollettini Microsoft sulla sicurezza - agosto 2012
http://technet.microsoft.com/en-us/security/bulletin/ms12-aug
Bollettini Microsoft sulla sicurezza
http://go.microsoft.com/fwlink/?LinkId=255327
http://go.microsoft.com/fwlink/?LinkId=257906
http://go.microsoft.com/fwlink/?LinkId=257914
http://go.microsoft.com/fwlink/?LinkId=257907
http://go.microsoft.com/fwlink/?LinkId=256487
http://go.microsoft.com/fwlink/?LinkID=257684
http://go.microsoft.com/fwlink/?LinkId=259630
http://go.microsoft.com/fwlink/?LinkId=255002
http://go.microsoft.com/fwlink/?LinkId=254386
Microsoft Update
http://windowsupdate.microsoft.com
https://www.update.microsoft.com/
http://support.microsoft.com/kb/294871
SANS ISC Diary
http://isc.sans.edu/diary.html?storyid=13900&rss
Mitre CVE
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1526
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2521
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2522
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2523
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2526
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1850
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1851
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1852
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1853
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2527
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2523
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-2524
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1888
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1856
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1766
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1767
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1768
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1769
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1770
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1771
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1772
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-1773
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3106
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3107
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3108
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3109
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2012-3110
-----BEGIN PGP SIGNATURE-----
iD8DBQFQLM6awZxMk2USYEIRArkHAKC0gxwvIMOBFrep/fDyu3qmjquHZQCfcwFo
7HJEl2L+XczmVoowYh2L89Q=
=HF5x
-----END PGP SIGNATURE-----