Information Security News mailing list archives

Previous By Date Next
Previous By Thread Next

Secunia Weekly Summary - Issue: 2012-06

From: InfoSec News <alerts () infosecnews org>
Date: Fri, 10 Feb 2012 04:17:35 -0600 (CST)
========================================================================

                  The Secunia Weekly Advisory Summary
                        2012-02-02 - 2012-02-09

                       This week: 48 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Corporate News
5..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

Secunia presentations at @ RSA Conference 2012, San Francisco, USA, 27
Feb-02 March
 * Carsten Eiram, Chief Security Specialist (Vulnerability Panel: Is it
Zero Day or Zero Care? 28 Feb, 15:50, Room 102)
 * Morten R. Stengaard, Director Product Management & Quality Assurance
(Is your mother/partner/child/friend vulnerable? 29 Feb, 14:30, Briefing
Center)
 * Stefan Frei, Research Analyst Director (Sponsor case study track:
How can a CIO secure a moving target with limited resources? 01 Mar,
09:30, Room 121)

Also, meet the Secunia team on stand #817 to discuss how you can
enhance your vulnerability/patch management process.

Find out more:
http://www.rsaconference.com/events/2012/usa/index.htm


========================================================================
2) This Week in Brief:

Oracle has acknowledged multiple vulnerabilities in Adobe Flash Player
included in Solaris, which can be exploited by malicious people to
bypass certain security restrictions and compromise a user's system.

http://secunia.com/advisories/47886/

Tielei Wang has discovered two vulnerabilities in Hancom Office 2010
SE, which can be exploited by malicious people to compromise a user's
system.

http://secunia.com/advisories/47386/

Parvez Anwar has discovered a vulnerability in IvanView, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/47362/

Multiple vulnerabilities have been reported in RealPlayer, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/47896/

A vulnerability has been reported in PHP, which can be exploited by
malicious people to compromise a vulnerable system.

http://secunia.com/advisories/47806/

Apple has issued a security update for Mac OS X, which fixes multiple
vulnerabilities.

http://secunia.com/advisories/47843/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA47806] PHP "php_register_variable_ex()" Code Execution
              Vulnerability
2.  [SA47843] Apple Mac OS X Multiple Vulnerabilities
3.  [SA47856] Skype Unspecified Vulnerability
4.  [SA47816] Mozilla Firefox / Thunderbird Multiple Vulnerabilities
5.  [SA47884] ISC BIND Deleted Domain Name Resolving Vulnerability
6.  [SA47839] Mozilla Firefox / Thunderbird Multiple Vulnerabilities
7.  [SA47896] RealPlayer Multiple Vulnerabilities
8.  [SA47161] Adobe Flash Player Unspecified Code Execution
Vulnerability
9.  [SA47865] IBM AIX "TCP large send offload" Denial of Service
              Vulnerability
10. [SA47657] 2X ApplicationServer TuxSystem ActiveX Control
              "ExportSettings()" Insecure Method

========================================================================
4) Secunia Corporate News

Kick-start new adventures with Secunia
Are you seeking a challenging position in Product Development or
Research? We are always on the lookout for new talented individuals who
want to work within IT security and help businesses/private users manage
and eliminate vulnerabilities. Visit our careers page here:
http://secunia.com/company/jobs/

========================================================================
5) This Week in Numbers

During the past week 48 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
  Windows             :     10 Secunia Advisories
  Unix/Linux          :     20 Secunia Advisories
  Other               :      0 Secunia Advisories
  Cross platform      :     17 Secunia Advisories

Criticality Ratings:
  Extremely Critical  :      0 Secunia Advisories
  Highly Critical     :     11 Secunia Advisories
  Moderately Critical :     13 Secunia Advisories
  Less Critical       :     21 Secunia Advisories
  Not Critical        :      3 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web     : http://secunia.com/
E-mail  : support () secunia com
Tel     : +45 70 20 51 44
Fax     : +45 70 20 51 45


______________________________________________________________________________
Certified Ethical Hacker and CISSP training with Expanding Security gives
the best training and support.
Get a free live class invite weekly.  Best program, best price.
www.ExpandingSecurity.com/PainPill
Previous By Date Next
Previous By Thread Next

Current thread: