{"id":1059,"date":"2017-09-15T09:02:33","date_gmt":"2017-09-15T14:02:33","guid":{"rendered":"https:\/\/cert.pa\/?p=1059"},"modified":"2017-09-15T09:02:33","modified_gmt":"2017-09-15T14:02:33","slug":"micosoft-libera-actualizaciones-para-82-vulnerabilidades","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=1059","title":{"rendered":"Micosoft libera actualizaciones para 82 vulnerabilidades"},"content":{"rendered":"

CSIRT Panam\u00e1 Aviso 2017-09-15 Microsoft libera actualizaciones para 82 vulnerabilidades
\nGravedad: Alta
\nFecha de publicaci\u00f3n: Septiembre 15, 2017
\nFecha de modificaci\u00f3n: Septiembre 14, 2017
\n\u00daltima revisi\u00f3n: Revisi\u00f3n A.
\nhttps:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance
\nSistemas Afectados:
\nMicrosoft Internet Explorer and Edge
\nMicrosoft Office
\n.NET Framework
\nWindows Kernel
\nWindows Hyper-V
\nMicrosoft Windows
\nMicrosoft Graphics Component
\nMicrosoft Scripting Engine
\nWindows DHCP Server
\nWindows Hyper-V<\/p>\n

I. Descripci\u00f3n
\nMicrosoft ha liberado actualizaciones que cubren 82 vulnerabilidades.<\/p>\n

II. Impacto
\nEstas correcciones o parches estan detalladas en la tabla a continuacion<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Product<\/th>\nCVE ID<\/th>\nCVE Title<\/th>\n<\/tr>\n
.NET Framework<\/td>\nCVE-2017-8759<\/a><\/td>\n.NET Framework Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Adobe Flash Player<\/td>\nADV170013<\/a><\/td>\nSeptember 2017 Flash Security Update<\/td>\n<\/tr>\n
Device Guard<\/td>\nCVE-2017-8746<\/a><\/td>\nDevice Guard Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
HoloLens<\/td>\nCVE-2017-9417<\/a><\/td>\nBroadcom BCM43xx Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Internet Explorer<\/td>\nCVE-2017-8749<\/a><\/td>\nInternet Explorer Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Internet Explorer<\/td>\nCVE-2017-8747<\/a><\/td>\nInternet Explorer Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Internet Explorer<\/td>\nCVE-2017-8733<\/a><\/td>\nInternet Explorer Spoofing Vulnerability<\/td>\n<\/tr>\n
Microsoft Bluetooth Driver<\/td>\nCVE-2017-8628<\/a><\/td>\nMicrosoft Bluetooth Driver Spoofing Vulnerability<\/td>\n<\/tr>\n
Microsoft Browsers<\/td>\nCVE-2017-8736<\/a><\/td>\nMicrosoft Browser Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Browsers<\/td>\nCVE-2017-8750<\/a><\/td>\nMicrosoft Browser Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8757<\/a><\/td>\nMicrosoft Edge Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8597<\/a><\/td>\nMicrosoft Edge Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8723<\/a><\/td>\nMicrosoft Edge Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-11766<\/a><\/td>\nMicrosoft Edge Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8643<\/a><\/td>\nMicrosoft Edge Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8648<\/a><\/td>\nMicrosoft Edge Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8735<\/a><\/td>\nMicrosoft Edge Spoofing Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8755<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8754<\/a><\/td>\nMicrosoft Edge Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8751<\/a><\/td>\nMicrosoft Edge Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8734<\/a><\/td>\nMicrosoft Edge Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8724<\/a><\/td>\nMicrosoft Edge Spoofing Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8731<\/a><\/td>\nMicrosoft Edge Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2017-8756<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Exchange Server<\/td>\nCVE-2017-11761<\/a><\/td>\nMicrosoft Exchange Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Exchange Server<\/td>\nCVE-2017-8758<\/a><\/td>\nMicrosoft Exchange Cross-Site Scripting Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8688<\/a><\/td>\nWindows GDI+ Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8685<\/a><\/td>\nWindows GDI+ Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8695<\/a><\/td>\nGraphics Component Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8683<\/a><\/td>\nWin32k Graphics Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8696<\/a><\/td>\nMicrosoft Graphics Component Remote Code Execution<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8684<\/a><\/td>\nWindows GDI+ Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8682<\/a><\/td>\nWin32k Graphics Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8720<\/a><\/td>\nWin32k Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2017-8676<\/a><\/td>\nWindows GDI+ Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8632<\/a><\/td>\nMicrosoft Office Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8725<\/a><\/td>\nMicrosoft Office Publisher Remote Code Execution<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8630<\/a><\/td>\nMicrosoft Office Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8743<\/a><\/td>\nPowerPoint Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8742<\/a><\/td>\nPowerPoint Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8745<\/a><\/td>\nMicrosoft SharePoint Cross Site Scripting Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8744<\/a><\/td>\nMicrosoft Office Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8567<\/a><\/td>\nMicrosoft Office Remote Code Execution<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nADV170015<\/a><\/td>\nMicrosoft Office Defense in Depth Update<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8629<\/a><\/td>\nMicrosoft SharePoint XSS Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2017-8631<\/a><\/td>\nMicrosoft Office Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8738<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8729<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8739<\/a><\/td>\nScripting Engine Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8740<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8741<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8649<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8660<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8748<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-11764<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8752<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2017-8753<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Uniscribe<\/td>\nCVE-2017-8692<\/a><\/td>\nUniscribe Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2017-8699<\/a><\/td>\nWindows Shell Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2017-8710<\/a><\/td>\nWindows Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2017-8716<\/a><\/td>\nWindows Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2017-8702<\/a><\/td>\nWindows Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows PDF<\/td>\nCVE-2017-8737<\/a><\/td>\nMicrosoft PDF Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows PDF<\/td>\nCVE-2017-8728<\/a><\/td>\nMicrosoft PDF Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Windows DHCP Server<\/td>\nCVE-2017-8686<\/a><\/td>\nWindows DHCP Server Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2017-8712<\/a><\/td>\nHyper-V Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2017-8713<\/a><\/td>\nHyper-V Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2017-8714<\/a><\/td>\nRemote Desktop Virtual Host Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2017-8711<\/a><\/td>\nHyper-V Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2017-8707<\/a><\/td>\nHyper-V Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2017-8704<\/a><\/td>\nHyper-V Denial of Service Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2017-8706<\/a><\/td>\nHyper-V Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2017-8719<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2017-8708<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2017-8679<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2017-8709<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel-Mode Drivers<\/td>\nCVE-2017-8687<\/a><\/td>\nWin32k Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel-Mode Drivers<\/td>\nCVE-2017-8681<\/a><\/td>\nWin32k Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel-Mode Drivers<\/td>\nCVE-2017-8675<\/a><\/td>\nWin32k Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Windows Kernel-Mode Drivers<\/td>\nCVE-2017-8678<\/a><\/td>\nWin32k Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel-Mode Drivers<\/td>\nCVE-2017-8677<\/a><\/td>\nWin32k Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel-Mode Drivers<\/td>\nCVE-2017-8680<\/a><\/td>\nWin32k Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows NetBIOS<\/td>\nCVE-2017-0161<\/a><\/td>\nNetBIOS Remote Code Execution Vulnerability<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

III. Referencia a soluciones, herramientas e informaci\u00f3n<\/p>\n

Se recomienda actualizar Windows utilizando la herramienta de Windows update o WSUS para Windows server.
\nhttps:\/\/www.microsoft.com\/en-us\/security\/pc-security\/malware-removal.aspx
\nInstale los parches tan pronto como est\u00e9n disponibles.
\nEjecute todo el software con los menos privilegios requeridos mientras se mantiene la funcionalidad.
\nPara mas referencias seguir el siguiente enlace https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance<\/p>\n

IV. Informaci\u00f3n de contacto
\nCSIRT PANAMA
\nComputer Security Incident Response Team Autoridad Nacional para la
\nInnovacion Gubernamental
\nE-Mail: info@cert.pa
\nPhone: +507 520-CERT (2378)
\nWeb: https:\/\/cert.pa
\nTwitter: @CSIRTPanama
\nFacebook: http:\/\/www.facebook.com\/CSIRTPanama
\nKey ID: 16F2B124<\/p>\n","protected":false},"excerpt":{"rendered":"

CSIRT Panam\u00e1 Aviso 2017-09-15 Microsoft libera actualizaciones para 82 vulnerabilidades Gravedad: Alta Fecha de publicaci\u00f3n: Septiembre 15, 2017 Fecha de modificaci\u00f3n: Septiembre 14, 2017 \u00daltima revisi\u00f3n: Revisi\u00f3n A. https:\/\/portal.msrc.microsoft.com\/en-us\/security-guidance Sistemas Afectados: Microsoft Internet Explorer and…<\/p>\n","protected":false},"author":5,"featured_media":414,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[95,76,43,8,72,44,36,74,21,9,73,64,80,68,45,94],"class_list":["post-1059","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-a","tag-actualizaciones","tag-alertas","tag-avisos","tag-avisos-de-seguridad","tag-bolentin","tag-boletin","tag-boletines","tag-internet-explorer","tag-microsoft","tag-parches","tag-seguridad","tag-vulnerabilidad","tag-vulnerabilidades","tag-windows","tag-windows-update"],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1059","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1059"}],"version-history":[{"count":3,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1059\/revisions"}],"predecessor-version":[{"id":1062,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1059\/revisions\/1062"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/414"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1059"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1059"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1059"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}