Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

Secunia Weekly Summary - Issue: 2011-38

From: InfoSec News <alerts () infosecnews org>
Date: Fri, 23 Sep 2011 04:49:29 -0500 (CDT)
========================================================================

                  The Secunia Weekly Advisory Summary
                        2011-09-15 - 2011-09-22

                       This week: 75 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Community News
5................................................Secunia Corporate News
6..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

The Dynamics & Threats of End-Point Software Portfolios
How is the threat environment changing? Secunia's presentation guides
you through a malware construction kit and measures the complexity of
end-points - the easy prey for cybercriminals. It also presents the
most effective protective measures for when the perimeter fails.

Although there is no silver bullet technology, identifying and locking
the right "doors" at the right time is the optimal strategy for
securing end-point software portfolios against vulnerabilities.

Read the presentation here:
http://secunia.com/?action=fetch&filename=Secunia_FIRST_2011_Presentation.pdf


========================================================================
2) This Week in Brief:

A security issue and some vulnerabilities have been reported in Google
Chrome, where some have an unknown impact and others can be exploited
by malicious people to conduct spoofing and cross-site scripting
attacks, disclose sensitive information, bypass certain security
restrictions, and compromise a user's system.

http://secunia.com/advisories/46049/

Luigi Auriemma has reported a vulnerability in MetaStock, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/45962/

Oracle has acknowledged multiple vulnerabilities in Mozilla Thunderbird
included in Solaris, which can be exploited by malicious people to
compromise a user's system.

http://secunia.com/advisories/46035/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA45978] Adobe Reader / Acrobat Multiple Vulnerabilities
2.  [SA45583] Adobe Flash Player Multiple Vulnerabilities
3.  [SA46049] Google Chrome Multiple Vulnerabilities
4.  [SA45932] Microsoft Office Excel Multiple Vulnerabilities
5.  [SA45910] Microsoft Windows Insecure Library Loading Vulnerability
6.  [SA45173] Sun Java JRE Insecure Executable Loading Vulnerability
7.  [SA46013] Apache HTTP Server mod_proxy_ajp Denial of Service
              Vulnerability
8.  [SA45979] Cisco Products Two Unspecified Vulnerabilities
9.  [SA46035] Oracle Solaris Mozilla Thunderbird Multiple
              Vulnerabilities
10. [SA46102] Google Chrome Flash Player Unspecified Vulnerabilities

========================================================================
4) Secunia Community News

Webinar: Microsoft Patch Tuesday . September 2011
Find out this month's key information by viewing our free, on-demand
webinar delivered by Stefan Frei, Secunia's Research Analyst Director:
http://www.youtube.com/user/Secunia#p/a/u/0/5TKXcVCwG6I

========================================================================
5) Secunia Corporate News

Pre-emptive action against vulnerabilities - a priority for effective
security strategies
The Secunia Vulnerability Intelligence Manager (VIM) enables you to
simplify and strategize your handling of emerging threats.

Read more and request a free trial:
http://secunia.com/products/corporate/vim/

========================================================================
6) This Week in Numbers

During the past week 75 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
  Windows             :      8 Secunia Advisories
  Unix/Linux          :     20 Secunia Advisories
  Other               :      5 Secunia Advisories
  Cross platform      :     42 Secunia Advisories

Criticality Ratings:
  Extremely Critical  :      0 Secunia Advisories
  Highly Critical     :     22 Secunia Advisories
  Moderately Critical :     33 Secunia Advisories
  Less Critical       :     19 Secunia Advisories
  Not Critical        :      1 Secunia Advisory

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web     : http://secunia.com/
E-mail  : support () secunia com
Tel     : +45 70 20 51 44
Fax     : +45 70 20 51 45


_____________________________________________________________
Register now for the #HITB2011KUL - Asia's premier
deep-knowledge network security event now in it's 9th year!
http://conference.hitb.org/hitbsecconf2011kul/
Previous By Date Next
Previous By Thread Next

Current thread: