{"id":1273,"date":"2018-09-13T09:44:37","date_gmt":"2018-09-13T14:44:37","guid":{"rendered":"https:\/\/cert.pa\/?p=1273"},"modified":"2018-09-13T09:44:37","modified_gmt":"2018-09-13T14:44:37","slug":"csirt-panama-aviso-2018-sep-13-microsoft-libera-actualizaciones-para-62-vulnerabilidades","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=1273","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2018-sep-13 Microsoft libera actualizaciones para 62 Vulnerabilidades."},"content":{"rendered":"

CSIRT Panam\u00e1 Aviso 2018-sep-13 Microsoft libera actualizaciones para 62 Vulnerabilidades.
\nGravedad: Alta
\nFecha de publicaci\u00f3n: Septiembre 13, 2018
\n\u00daltima revisi\u00f3n: Septiembre 12, 2018
\nhttps:\/\/technet.microsoft.com\/en-us\/security\/bulletins.aspx<\/p>\n

Sistemas Afectados:
\n.NET Core
\n.NET Framework
\nAdobe Flash Player
\nAzure
\nDevice Guard
\nInternet Explorer
\nMicrosoft Edge
\nMicrosoft Graphics Component
\nMicrosoft Identity Services
\nMicrosoft JET Database Engine
\nMicrosoft Office
\nMicrosoft Scripting Engine
\nMicrosoft Windows
\nMicrosoft XML Core Services
\nWindows Hyper-V
\nWindows Kernel
\nWindows Media
\nWindows Shell
\nWindows SMB Server
\nWindows Subsystem for Linux<\/p>\n

I. Descripci\u00f3n
\nMicrosoft ha lanzado actualizaciones para 62 vulnerabilidades que afectan a m\u00faltiples productos.<\/p>\n

II. Impacto<\/p>\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n\n
Tag<\/th>\nCVE ID<\/th>\nCVE Title<\/th>\n<\/tr>\n
.NET Core<\/td>\nCVE-2018-8409<\/a><\/td>\nSystem.IO.Pipelines Denial of Service<\/td>\n<\/tr>\n
.NET Framework<\/td>\nCVE-2018-8421<\/a><\/td>\n.NET Framework Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Adobe Flash Player<\/td>\nADV180023<\/a><\/td>\nSeptember 2018 Adobe Flash Security Update<\/td>\n<\/tr>\n
Azure<\/td>\nCVE-2018-8479<\/a><\/td>\nAzure IoT SDK Spoofing Vulnerability<\/td>\n<\/tr>\n
Device Guard<\/td>\nCVE-2018-8449<\/a><\/td>\nDevice Guard Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
Internet Explorer<\/td>\nCVE-2018-8470<\/a><\/td>\nInternet Explorer Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
Internet Explorer<\/td>\nCVE-2018-8447<\/a><\/td>\nInternet Explorer Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Internet Explorer<\/td>\nCVE-2018-8461<\/a><\/td>\nInternet Explorer Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2018-8366<\/a><\/td>\nMicrosoft Edge Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2018-8469<\/a><\/td>\nMicrosoft Edge Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2018-8463<\/a><\/td>\nMicrosoft Edge Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2018-8425<\/a><\/td>\nMicrosoft Edge Spoofing Vulnerability<\/td>\n<\/tr>\n
Microsoft Edge<\/td>\nCVE-2018-8464<\/a><\/td>\nMicrosoft Edge PDF Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2018-8332<\/a><\/td>\nWin32k Graphics Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2018-8475<\/a><\/td>\nWindows Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2018-8462<\/a><\/td>\nDirectX Graphics Kernel Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2018-8424<\/a><\/td>\nWindows GDI Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Graphics Component<\/td>\nCVE-2018-8433<\/a><\/td>\nMicrosoft Graphics Component Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Identity Services<\/td>\nCVE-2018-8269<\/a><\/td>\nOData Denial of Service Vulnerability<\/td>\n<\/tr>\n
Microsoft JET Database Engine<\/td>\nCVE-2018-8392<\/a><\/td>\nMicrosoft JET Database Engine Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft JET Database Engine<\/td>\nCVE-2018-8393<\/a><\/td>\nMicrosoft JET Database Engine Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2018-8428<\/a><\/td>\nMicrosoft SharePoint Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2018-8426<\/a><\/td>\nMicrosoft Office SharePoint XSS Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2018-8429<\/a><\/td>\nMicrosoft Excel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2018-8431<\/a><\/td>\nMicrosoft SharePoint Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2018-8430<\/a><\/td>\nWord PDF Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2018-8474<\/a><\/td>\nLync for Mac 2011 Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
Microsoft Office<\/td>\nCVE-2018-8331<\/a><\/td>\nMicrosoft Excel Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8457<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8459<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8465<\/a><\/td>\nChakra Scripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8456<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8367<\/a><\/td>\nChakra Scripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8391<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8452<\/a><\/td>\nScripting Engine Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8315<\/a><\/td>\nMicrosoft Scripting Engine Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8354<\/a><\/td>\nScripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8466<\/a><\/td>\nChakra Scripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Scripting Engine<\/td>\nCVE-2018-8467<\/a><\/td>\nChakra Scripting Engine Memory Corruption Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2018-8438<\/a><\/td>\nWindows Hyper-V Denial of Service Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2018-8271<\/a><\/td>\nWindows Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nADV180022<\/a><\/td>\nWindows Denial of Service Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2018-8440<\/a><\/td>\nWindows ALPC Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft Windows<\/td>\nCVE-2018-8410<\/a><\/td>\nWindows Registry Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Microsoft XML Core Services<\/td>\nCVE-2018-8420<\/a><\/td>\nMS XML Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2018-0965<\/a><\/td>\nWindows Hyper-V Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2018-8435<\/a><\/td>\nWindows Hyper-V Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2018-8436<\/a><\/td>\nWindows Hyper-V Denial of Service Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2018-8439<\/a><\/td>\nWindows Hyper-V Remote Code Execution Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2018-8437<\/a><\/td>\nWindows Hyper-V Denial of Service Vulnerability<\/td>\n<\/tr>\n
Windows Hyper-V<\/td>\nCVE-2018-8434<\/a><\/td>\nWindows Hyper-V Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2018-8336<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2018-8446<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2018-8443<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2018-8445<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2018-8455<\/a><\/td>\nWindows Kernel Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Windows Kernel<\/td>\nCVE-2018-8442<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Media<\/td>\nCVE-2018-8419<\/a><\/td>\nWindows Kernel Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows Shell<\/td>\nCVE-2018-8468<\/a><\/td>\nWindows Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Windows SMB Server<\/td>\nCVE-2018-8444<\/a><\/td>\nWindows SMB Information Disclosure Vulnerability<\/td>\n<\/tr>\n
Windows SMB Server<\/td>\nCVE-2018-8335<\/a><\/td>\nWindows SMB Denial of Service Vulnerability<\/td>\n<\/tr>\n
Windows Subsystem for Linux<\/td>\nCVE-2018-8441<\/a><\/td>\nWindows Subsystem for Linux Elevation of Privilege Vulnerability<\/td>\n<\/tr>\n
Windows Subsystem for Linux<\/td>\nCVE-2018-8337<\/a><\/td>\nWindows Subsystem for Linux Security Feature Bypass Vulnerability<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n

III. Referencia a soluciones, herramientas e informaci\u00f3n<\/p>\n

Se recomienda actualizar los equipos utilizando windows update.<\/p>\n

IV. Informaci\u00f3n de contacto
\nCSIRT PANAMA
\nComputer Security Incident Response Team Autoridad Nacional para la Innovacion Gubernamental
\nE-Mail: info@cert.pa
\nPhone: +507 520-CERT (2378)
\nWeb: https:\/\/cert.pa
\nTwitter: @CSIRTPanama
\nFacebook: http:\/\/www.facebook.com\/CSIRTPanama
\nKey ID: 16F2B124<\/p>\n","protected":false},"excerpt":{"rendered":"

CSIRT Panam\u00e1 Aviso 2018-sep-13 Microsoft libera actualizaciones para 62 Vulnerabilidades. Gravedad: Alta Fecha de publicaci\u00f3n: Septiembre 13, 2018 \u00daltima revisi\u00f3n: Septiembre 12, 2018 https:\/\/technet.microsoft.com\/en-us\/security\/bulletins.aspx Sistemas Afectados: .NET Core .NET Framework Adobe Flash Player Azure Device…<\/p>\n","protected":false},"author":5,"featured_media":414,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[76,78,27,43,8,72,44,36,74,49,21,9,73,64,80,68,45,94],"class_list":["post-1273","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-actualizaciones","tag-adobe","tag-adobe-flash-player","tag-alertas","tag-avisos","tag-avisos-de-seguridad","tag-bolentin","tag-boletin","tag-boletines","tag-ciberseguridad","tag-internet-explorer","tag-microsoft","tag-parches","tag-seguridad","tag-vulnerabilidad","tag-vulnerabilidades","tag-windows","tag-windows-update"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1273","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=1273"}],"version-history":[{"count":1,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1273\/revisions"}],"predecessor-version":[{"id":1274,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/1273\/revisions\/1274"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/414"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=1273"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=1273"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=1273"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}