{"id":147,"date":"2015-08-08T08:55:24","date_gmt":"2015-08-08T13:55:24","guid":{"rendered":"https:\/\/10.252.76.154\/?p=147"},"modified":"2015-09-29T16:37:03","modified_gmt":"2015-09-29T21:37:03","slug":"csirt-panama-aviso-2015-08-boletin-de-seguridad-de-microsoft","status":"publish","type":"post","link":"https:\/\/cert.pa\/?p=147","title":{"rendered":"CSIRT Panam\u00e1 Aviso 2015-08- Bolet\u00edn de Seguridad de Microsoft"},"content":{"rendered":"

CSIRT Panam\u00e1 Aviso 2015-08- Bolet\u00edn de Seguridad de Microsoft
\nGravedad: Alta
\nFecha de publicaci\u00f3n: Agosto 8, 2015
\nFecha de modificaci\u00f3n: Agosto 8, 2015
\n\u00daltima revisi\u00f3n: Revisi\u00f3n A.
\nFuente:<\/p>\n

Sistemas Afectados<\/p>\n

Microsoft Windows Vista, Microsoft Windows 7, Microsoft Windows 10
\nMicrosoft Windows Server 2008
\nMicrosoft .NET Framework 4.6
\nMicrosoft Office 2007, Microsoft Office 2010, Microsoft Office 2013, Microsoft Office 2013, Microsoft Office para Mac 2011, Microsoft Office para Mac 2016, paquete de compatibilidad de Microsoft Office, Microsoft Word Viewer, Word Servicios de automatizaci\u00f3n en Microsoft Office SharePoint Server 2010, Word Servicios de automatizaci\u00f3n en Microsoft Office SharePoint Server 2013, Microsoft Office Web Apps 2010 y Microsoft Office 2013 Servidor de aplicaciones Web.
\nI. Descripci\u00f3n
\nMicrosoft ha liberado 14 boletines de seguridad, solucionando vulnerabilidades de tipo ejecuci\u00f3n remota de c\u00f3digo, elevaci\u00f3n de privilegios y revelaci\u00f3n de informaci\u00f3n. Cabe destacar que 4 de estos bolet\u00ednes son considerados de gravedad cr\u00edtica seg\u00fan el bolet\u00edn de seguridad. Se recomienda revisar los avisos de seguridad de Microsoft liberados este mes y aplicar las actualizaciones correspondientes.<\/p>\n

Gravedad: Alta
\nMS15-079 – Actualizaciones de seguridad cumulativas para Internet Explorer (Cr\u00edtica)
\nMS15-080 – Vulnerabilidades en el componente gr\u00e1fico de Microsoft pudieran permitir ejecuci\u00f3n remota de c\u00f3digo (Cr\u00edtica)
\nMS15-081 – Vulnerabilidades en Microsoft Office pudieran permitir ejecuci\u00f3n remota de c\u00f3digo (Cr\u00edtica)
\nMS15-082 – Vulnerabilidades en RDP pudieran permitir ejecuci\u00f3n remota de c\u00f3digo (Cr\u00edtica)<\/p>\n

Gravedad: Intermedia
\nMS15-083 – Vulnerabilidad en SMB pudieran permitir ejecuci\u00f3n remota de c\u00f3digo
\nMS15-084 – Vulnerabilidades en XML Core Services pudieran permitir revelaci\u00f3n de informaci\u00f3n
\nMS15-085 – Vulnerabilidades en el Mount Manager pudieran permitir elevaci\u00f3n de privilegios
\nMS15-086 – Vulnerabilidades en el Manejador del Centro de Operaciones del Sistema pudiera permitir elevaciones de privilegios
\nMS15-087 – Vulnerabilidad en los servicios UDDI pudieran permitir elevaci\u00f3n de privilegios
\nMS15-088 – Parametro de l\u00ednea de comando no-seguro pudiera permitir revelaci\u00f3n de informaci\u00f3n
\nMS15-089 – Vulnerabilidad en WebDAV pudiera permitir revelaci\u00f3n de informaci\u00f3n
\nMS15-090 – Vulnerabilidades en Microsoft Windows pudieran permitir elevaci\u00f3n de privilegios
\nMS15-091 – Actualizaciones de seguridad cumulativas para Microsoft Edge
\nMS15-092 – Vulnerabilidades en el framework .NET pudieran permitir elevaci\u00f3n de privilegios<\/p>\n

II. Impacto
\nIII. Referencia a soluciones, herramientas e informaci\u00f3n<\/p>\n

https:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-079
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-080
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-081
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-082
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-083
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-084
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-085
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-086
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-087
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-088
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-089
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-090
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-091
\nhttps:\/\/technet.microsoft.com\/en-us\/library\/security\/MS15-092<\/p>\n

IV. Informaci\u00f3n de contacto
\nCSIRT PANAMA
\nAutoridad Nacional para la Innovaci\u00f3n Gubernamental
\nE-Mail: info@cert.pa
\nWeb: http:\/\/www.cert.pa
\n—–BEGIN PGP PUBLIC KEY BLOCK—–
\nVersion: GnuPG v2.0.17 (MingW32)<\/p>\n

mQENBE8C9KoBCAClkvrtdD08B1YgIntnK241GmWY7fRWtPn\/QIEG1+TLokEuOhw+
\nGq\/lK\/4NP9RzqpD57LcRUBiGgTmO\/5C9xkhVmxz2jid0h03fLorC84rAk2pOjr0i
\npbltETq9RCGhOWp13OV22x2yiIedBi05bzw3F+uLHhn9xKjmpBuZB6WO\/TuD52DH
\nKRZtwSvoaa61vL0bGnIf3lNGWkALWEC3lGBppby4D05N2FNfgfOFr1yOpxTaRaDh
\n4kOnoAEWVzppkTPyqSOkwXmgdma8D9yqD41Ffu8ypGTv+OOVO7jDq8tx9wVZEU+w
\npqBTzQcf0P0K7qO3igdHQxqHmqXsaJpbmvCBABEBAAG0KkNTSVJUIFBhbmFtYSAo
\nQ1NJUlQgUGFuYW1hKSA8aW5mb0BjZXJ0LnBhPokBOAQTAQIAIgUCTwL0qgIbDwYL
\nCQgHAwIGFQgCCQoLBBYCAwECHgECF4AACgkQ2YlXchbysSSPSQgAooUy3qSR\/YX2
\nH3USJ5VzrmnraHg5LIWRPIBD1PGrswjLE8hxdobPU\/uzi9LWnEcDscfFVKM\/K0Jt
\nbjeoESqCVFlpE0YXJWdDhy0m2WM410sDE2HVXbPhWGqrNeDb0VUV\/LWag1yYTj5w
\nkkxma4Tk5TqlhgL5su2PpjtTdFSHYD4N+4mu7g1GhRrrpz+u7ZRm3b\/WkAJg5FIg
\nU0MpPqUGAF5\/pc02ZB10FdxDwWyXAkwYUN+zfLiKzKOrBGkEw9+jvFGU+z76P9Zk
\n1XJIexpmkBYTxc+TOclhAp\/3HP4taoBHRMoR1q1YhdC++UgRSLmPLGn\/AB707JzN
\nQ80++q2kWQ==
\n=JUYg
\n—–END PGP PUBLIC KEY BLOCK—–<\/p>\n","protected":false},"excerpt":{"rendered":"

CSIRT Panam\u00e1 Aviso 2015-08- Bolet\u00edn de Seguridad de Microsoft Gravedad: Alta Fecha de publicaci\u00f3n: Agosto 8, 2015 Fecha de modificaci\u00f3n: Agosto 8, 2015 \u00daltima revisi\u00f3n: Revisi\u00f3n A. Fuente: Sistemas Afectados Microsoft Windows Vista, Microsoft Windows…<\/p>\n","protected":false},"author":4,"featured_media":295,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"om_disable_all_campaigns":false,"_monsterinsights_skip_tracking":false,"_monsterinsights_sitenote_active":false,"_monsterinsights_sitenote_note":"","_monsterinsights_sitenote_category":0,"_uf_show_specific_survey":0,"_uf_disable_surveys":false,"footnotes":""},"categories":[4],"tags":[8,9],"class_list":["post-147","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-avisos-de-seguridad","tag-avisos","tag-microsoft"],"_links":{"self":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/147","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcomments&post=147"}],"version-history":[{"count":2,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/147\/revisions"}],"predecessor-version":[{"id":150,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/posts\/147\/revisions\/150"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=\/wp\/v2\/media\/295"}],"wp:attachment":[{"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fmedia&parent=147"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Fcategories&post=147"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/cert.pa\/index.php?rest_route=%2Fwp%2Fv2%2Ftags&post=147"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}