La publicación mensual de actualizaciones de seguridad de Microsoft este mes consta de 48 vulnerabilidades, 25 clasificadas como críticas, 21 como importantes y 2 como moderadas, catalogadas de Importancia: 5 – Crítica

Recursos afectados:

  • Adobe Flash Player
  • Internet Explorer 10
  • Internet Explorer 11
  • Internet Explorer 9
  • Microsoft Edge
  • Microsoft Office 2010 Click-to-Run (C2R) for 32-bit editions
  • Microsoft Office 2010 Click-to-Run (C2R) for 64-bit editions
  • Microsoft Office 2013 Click-to-Run (C2R) for 32-bit editions
  • Microsoft Office 2013 Click-to-Run (C2R) for 64-bit editions
  • Microsoft Office 2016 Click-to-Run (C2R) for 32-bit editions
  • Microsoft Office 2016 Click-to-Run (C2R) for 64-bit editions
  • Microsoft Outlook 2007 Service Pack 3
  • Microsoft Outlook 2010 Service Pack 2 (32-bit editions)
  • Microsoft Outlook 2010 Service Pack 2 (64-bit editions)
  • Microsoft Outlook 2013 RT Service Pack 1
  • Microsoft Outlook 2013 Service Pack 1 (32-bit editions)
  • Microsoft Outlook 2013 Service Pack 1 (64-bit editions)
  • Microsoft Outlook 2016 (32-bit edition)
  • Microsoft Outlook 2016 (64-bit edition)
  • Microsoft SharePoint Server 2010 Service Pack 2
  • Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3
  • Microsoft SQL Server 2012 for 32-bit Systems Service Pack 3 (CU)
  • Microsoft SQL Server 2012 for x64-based Systems Service Pack 3
  • Microsoft SQL Server 2012 for x64-based Systems Service Pack 3 (CU)
  • Microsoft SQL Server 2014 Service Pack 1 for 32-bit Systems
  • Microsoft SQL Server 2014 Service Pack 1 for 32-bit Systems (CU)
  • Microsoft SQL Server 2014 Service Pack 1 for x64-based Systems
  • Microsoft SQL Server 2014 Service Pack 1 for x64-based Systems (CU)
  • Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems
  • Microsoft SQL Server 2014 Service Pack 2 for 32-bit Systems (CU)
  • Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems
  • Microsoft SQL Server 2014 Service Pack 2 for x64-based Systems (CU)
  • Microsoft SQL Server 2016 for x64-based Systems
  • Microsoft SQL Server 2016 for x64-based Systems (CU)
  • Microsoft SQL Server 2016 for x64-based Systems Service Pack 1
  • Microsoft SQL Server 2016 for x64-based Systems Service Pack 1 (CU)
  • Windows 10 for 32-bit Systems
  • Windows 10 for x64-based Systems
  • Windows 10 Version 1511 for 32-bit Systems
  • Windows 10 Version 1511 for x64-based Systems
  • Windows 10 Version 1607 for 32-bit Systems
  • Windows 10 Version 1607 for x64-based Systems
  • Windows 10 Version 1703 for 32-bit Systems
  • Windows 10 Version 1703 for x64-based Systems
  • Windows 7 for 32-bit Systems Service Pack 1
  • Windows 7 for x64-based Systems Service Pack 1
  • Windows 8.1 for 32-bit systems
  • Windows 8.1 for x64-based systems
  • Windows RT 8.1
  • Windows Server 2008 for 32-bit Systems Service Pack 2
  • Windows Server 2008 for 32-bit Systems Service Pack 2 (Server Core installation)
  • Windows Server 2008 for Itanium-Based Systems Service Pack 2
  • Windows Server 2008 for x64-based Systems Service Pack 2
  • Windows Server 2008 for x64-based Systems Service Pack 2 (Server Core installation)
  • Windows Server 2008 R2 for Itanium-Based Systems Service Pack 1
  • Windows Server 2008 R2 for x64-based Systems Service Pack 1
  • Windows Server 2008 R2 for x64-based Systems Service Pack 1 (Server Core installation)
  • Windows Server 2012
  • Windows Server 2012 (Server Core installation)
  • Windows Server 2012 R2
  • Windows Server 2012 R2 (Server Core installation)
  • Windows Server 2016
  • Windows Server 2016  (Server Core installation)

Para conocer el detalle de las versiones afectadas de cada software, por favor, consulte los enlaces de la sección “Más información”.

Recomendación

  • Instalar la actualización correspondiente. En el resumen de los boletines de seguridad de Microsoft, se informa de los distintos métodos de actualización dentro de cada boletín.

Detalle de las actualizaciones

En el boletín de actualizaciones de seguridad correspondiente al mes de agosto se han publicado vulnerabilidades de seguridad de los siguientes tipos:

  • Denegación de servicio: CVE-2017-0174; CVE-2017-8623; CVE-2017-8627; CVE-2017-8673
  • Elevación de privilegios: CVE-2017-8593; CVE-2017-8622 (Crítica); CVE-2017-8624; CVE-2017-8633
  • Divulgación de información: CVE-2017-8666; CVE-2017-8668
  • Ejecución remota de código: CVE-2017-0250 (Crítica); CVE-2017-0293 (Crítica); CVE-2017-8591 (Crítica); CVE-2017-8620 (Crítica); CVE-2017-8664; CVE-2017-8691

Más información

Fuente: Hispasec

Anuncios