FVAL Online - Qualidade com simplicidade

A Microsoft divulgou um alerta de segurança para uma falha no sistema de interpretação de URLs do Microsoft Agent, intitulado "MS07-020 - Vulnerability in Microsoft Agent Could Allow Remote Code Execution (932168)".

Um atacante pode explorar a brecha ao induzir o usuário de um computador com esta vulnerabilidade a acessar uma página web devidamente preparada. Caso obtenha sucesso, o cracker ganhará controle total sobre o sistema da vítima.


Sistemas afetados:

• Microsoft Windows 2000 Service Pack 4
• Microsoft Windows XP Service Pack 2
• Microsoft Windows XP Professional x64 Edition
• Microsoft Windows XP Professional x64 Edition Service Pack 2
• Microsoft Windows Server 2003
• Microsoft Windows Server 2003 Service Pack 1
• Microsoft Windows Server 2003 Service Pack 2
• Microsoft Windows Server 2003 x64 Edition com Service Pack 1
• Microsoft Windows Server 2003 x64 Edition com Service Pack 2
• Microsoft Windows Server 2003 para sistemas baseados em Itanium
• Microsoft Windows Server 2003 com SP1 para sistemas baseados em Itanium
• Microsoft Windows Server 2003 com SP2 para sistemas baseados em Itanium

Correções disponíveis:

• Microsoft Windows 2000 Service Pack 4

http://www.microsoft.com/downloads/details.aspx?FamilyId=49dc470b-64e2-47ec-be90-622b407c7751

• Microsoft Windows XP Service Pack 2

http://www.microsoft.com/downloads/details.aspx?FamilyId=e16ededa-6e8c-40d6-a3c0-d61362411acc

• Microsoft Windows XP Professional x64 Edition

http://www.microsoft.com/downloads/details.aspx?FamilyId=23909036-898f-41af-a3de-4a899a15d25d

• Microsoft Windows XP Professional x64 Edition Service Pack 2

http://www.microsoft.com/downloads/details.aspx?FamilyId=23909036-898f-41af-a3de-4a899a15d25d

• Microsoft Windows Server 2003

http://www.microsoft.com/downloads/details.aspx?FamilyId=281f10d2-d754-44cd-8318-9ce94b8d01b4

• Microsoft Windows Server 2003 Service Pack 1

http://www.microsoft.com/downloads/details.aspx?FamilyId=281f10d2-d754-44cd-8318-9ce94b8d01b4

• Microsoft Windows Server 2003 Service Pack 2

http://www.microsoft.com/downloads/details.aspx?FamilyId=281f10d2-d754-44cd-8318-9ce94b8d01b4

• Microsoft Windows Server 2003 x64 Edition com Service Pack 1

http://www.microsoft.com/downloads/details.aspx?FamilyId=50469b54-b6ff-46ed-b2bc-3b00b0984e1e

• Microsoft Windows Server 2003 x64 Edition com Service Pack 2

http://www.microsoft.com/downloads/details.aspx?FamilyId=50469b54-b6ff-46ed-b2bc-3b00b0984e1e

• Microsoft Windows Server 2003 para sistemas baseados em Itanium

http://www.microsoft.com/downloads/details.aspx?FamilyId=883660ca-e976-460f-8e50-c19d1b02b42f

• Microsoft Windows Server 2003 com SP1 para sistemas baseados em Itanium

http://www.microsoft.com/downloads/details.aspx?FamilyId=883660ca-e976-460f-8e50-c19d1b02b42f

• Microsoft Windows Server 2003 com SP2 para sistemas baseados em Itanium

http://www.microsoft.com/downloads/details.aspx?FamilyId=883660ca-e976-460f-8e50-c19d1b02b42f

Mais informações:

• MS07-020 - Vulnerability in Microsoft Agent Could Allow Remote Code Execution (932168)

http://www.microsoft.com/technet/security/Bulletin/MS07-020.mspx

• Microsoft Brasil Security

http://www.microsoft.com/brasil/security

• Technet Brasil - Central de Seguranca

http://www.technetbrasil.com.br/seguranca

• Windows Live OneCare

http://safety.live.com