-----Mensaje original-----
De: CERT Advisory [mailto:cert-advisory@cert.org]
Enviado el: martes, 09 de junio de 2009 22:31
Para: cert-advisory@cert.org
Asunto: US-CERT Technical Cyber Security Alert TA09-160A -- Microsoft Updates for Multiple Vulnerabilities

 

 

-----BEGIN PGP SIGNED MESSAGE-----

Hash: SHA1

 

 

                    National Cyber Alert System

 

              Technical Cyber Security Alert TA09-160A

 

 

Microsoft Updates for Multiple Vulnerabilities

 

   Original release date: June 09, 2009

   Last revised: --

   Source: US-CERT

 

 

Systems Affected

 

     * Microsoft Windows

     * Microsoft Office

     * Microsoft Internet Explorer

 

 

Overview

 

   Microsoft has released updates that address vulnerabilities in

   Microsoft Windows, Office, and Internet Explorer.

 

 

I. Description

 

   As part of the Microsoft Security Bulletin Summary for June 2009,

   Microsoft released updates to address vulnerabilities that affect

   Microsoft Windows, Office, and Internet Explorer.

 

 

II. Impact

 

   A remote, unauthenticated attacker could execute arbitrary code,

   gain elevated privileges,  or cause a vulnerable application to

   crash.

 

 

III. Solution

 

   Microsoft has provided updates for these vulnerabilities in the

   Microsoft Security Bulletin Summary for June 2009. The security

   bulletin describes any known issues related to the updates.

   Administrators are encouraged to note these issues and test for any

   potentially adverse effects. Administrators should consider using

   an automated update distribution system such as Windows Server

   Update Services (WSUS).

 

 

IV. References

 

* Microsoft Security Bulletin Summary for June 2009 -

   <http://www.microsoft.com/technet/security/bulletin/ms09-jun.mspx>

 

* Microsoft Windows Server Update Services -

   <http://technet.microsoft.com/en-us/wsus/default.aspx>

 

* US-CERT Vulnerability Notes for Microsoft June 2009 updates -

   <http://www.kb.cert.org/vuls/byid?searchview&query=ms09-jun>

 

____________________________________________________________________

 

   The most recent version of this document can be found at:

 

     <http://www.us-cert.gov/cas/techalerts/TA09-160A.html>

____________________________________________________________________

 

   Feedback can be directed to US-CERT Technical Staff. Please send

   email to <cert@cert.org> with "TA09-160A Feedback VU#983731" in

   the subject.

____________________________________________________________________

 

   For instructions on subscribing to or unsubscribing from this

   mailing list, visit <http://www.us-cert.gov/cas/signup.html>.

____________________________________________________________________

 

   Produced 2009 by US-CERT, a government organization.

 

   Terms of use:

 

     <http://www.us-cert.gov/legal.html>

____________________________________________________________________

 

Revision History

 

  June 09, 2009: Initial release

 

 

-----BEGIN PGP SIGNATURE-----

Version: GnuPG v1.4.5 (GNU/Linux)

 

iQEVAwUBSi7EY3IHljM+H4irAQKpUwgAqcYG1SVf4dPt7wevUx9UIKyw/RWG/wCI

+ns9UEmk4Pbdu8Tj+snDsNxxOnvdUGnWzfbuBFrzexr+u3zY0BgvBQ50eaYnYyVn

Iv9yxxxKfdvQEQIiPi/5gWl05k4axYdSjEYLZqNkQIj1VvqJOhCWaHKPsJZykdZq

ZZLd8aFxxM7fj0RrKeorXGiApw45kP9a133EN7NRf8CvYsNKnUTMYVPC2bTaq0Jb

HCjjEOwBWaP6YjqQ1laVslCHzOVpFzQnkl+IKBsoDAu1397KjwobIR340YyW6K4g

ckdod5TwdG77KOcNZHAp+uQMffGOaCfqj/MFk7qEYxN7/0gJXuB8mQ==

=9e4w

-----END PGP SIGNATURE-----