======================================================================== The Secunia Weekly Advisory Summary 2011-03-24 - 2011-03-31 This week: 50 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4................................................Secunia Community News 5................................................Secunia Corporate News 6..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Reducing the window of opportunity for cybercriminals: "There is an on-going arms-race in the IT security industry between vendors striving to produce secure software, and researchers' and cybercriminals' efforts (and successes) in finding new vulnerabilities in software". Secunia discusses the evolving vulnerability threat, patching complexity, and risk reduction in this e-Crime 2011 article. Read more: http://secunia.com/?action=fetch&filename=Secunia_eCrime_Article_2011.pdf ======================================================================== 2) This Week in Brief: Windows Applications Insecure Library Loading The Official, Verified Secunia List: http://secunia.com/advisories/windows_insecure_library_loading/ The list is continuously updated as we confirm vulnerability reports, remember to check back regularly to see if any of your programs are affected. -- Luigi Auriemma has reported multiple vulnerabilities in Siemens FactoryLink, which can be exploited by malicious people to disclose potentially sensitive information, cause a DoS (Denial of Service), and compromise a vulnerable system. http://secunia.com/advisories/43851/ -- Some vulnerabilities have been reported in Google Chrome, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/43859/ -- A vulnerability has been reported in Google Picasa, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/43853/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA43751] Adobe Flash Player / AIR AVM2 Instruction Sequence Handling Vulnerability 2. [SA43826] VLC Media Player Large Video Dimension Vulnerability 3. [SA43859] Google Chrome Multiple Vulnerabilities 4. [SA43262] Sun Java JDK / JRE / SDK Multiple Vulnerabilities 5. [SA43814] Apple Mac OS X Multiple Vulnerabilities 6. [SA43832] Apple iPhone iOS "OfficeArtMetafileHeader" Parsing Vulnerability 7. [SA43853] Google Picasa Insecure Library Loading Vulnerability 8. [SA43860] IBM Lotus Domino Server Controller Authentication Bypass Vulnerability 9. [SA43299] Microsoft Windows SMB Browser Election Request Parsing Vulnerability 10. [SA43865] openC Multiple Script Insertion Vulnerabilities ======================================================================== 4) Secunia Community News Events: Secunia will be exhibiting at Infosecurity Europe (stand #B81) from April 19-21 in London. Read more: http://secunia.com/company/events/infosec_2011/ Article: PC World '6 Super Security Freebies': "These six free downloads will bolster your system and network security" Read more: http://www.pcworld.com/article/223292/6_super_security_freebies.html Free security factsheets: Secunia's quarterly factsheets for Q1 2011 will be available on Friday 1st April. Read more: http://secunia.com/resources/factsheets/ ======================================================================== 5) Secunia Corporate News New, free, live Secunia webinars on Microsoft Patch Tuesday (monthly from 13th April 2011) Learn more and register: https://www1.gotomeeting.com/register/951818265/ ======================================================================== 6) This Week in Numbers During the past week 50 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 3 Secunia Advisories Unix/Linux : 26 Secunia Advisories Other : 1 Secunia Advisory Cross platform : 20 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 3 Secunia Advisories Moderately Critical : 24 Secunia Advisories Less Critical : 16 Secunia Advisories Not Critical : 7 Secunia Advisories ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support_at_private Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/Received on Thu Mar 31 2011 - 23:28:03 PDT
This archive was generated by hypermail 2.2.0 : Thu Mar 31 2011 - 23:35:27 PDT