[ISN] Secunia Weekly Summary - Issue: 2011-13

From: InfoSec News <alerts_at_private>
Date: Fri, 1 Apr 2011 00:28:03 -0600 (CST)
========================================================================

                  The Secunia Weekly Advisory Summary                  
                        2011-03-24 - 2011-03-31                        

                       This week: 50 advisories                        

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Community News
5................................................Secunia Corporate News
6..................................................This Week in Numbers
========================================================================
1) Word From Secunia:

Reducing the window of opportunity for cybercriminals: "There is an
on-going arms-race in the IT security industry between vendors striving
to produce secure software, and researchers' and cybercriminals' efforts
(and successes) in finding new vulnerabilities in software".

Secunia discusses the evolving vulnerability threat, patching
complexity, and risk reduction in this e-Crime 2011 article.

Read more:
http://secunia.com/?action=fetch&filename=Secunia_eCrime_Article_2011.pdf

========================================================================
2) This Week in Brief:

Windows Applications Insecure Library Loading

The Official, Verified Secunia List:
http://secunia.com/advisories/windows_insecure_library_loading/

The list is continuously updated as we confirm vulnerability reports,
remember to check back regularly to see if any of your programs are
affected.

 --

Luigi Auriemma has reported multiple vulnerabilities in Siemens
FactoryLink, which can be exploited by malicious people to disclose
potentially sensitive information, cause a DoS (Denial of Service), and
compromise a vulnerable system.

http://secunia.com/advisories/43851/

 --

Some vulnerabilities have been reported in Google Chrome, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/43859/

 --

A vulnerability has been reported in Google Picasa, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/43853/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA43751] Adobe Flash Player / AIR AVM2 Instruction Sequence
              Handling Vulnerability
2.  [SA43826] VLC Media Player Large Video Dimension Vulnerability
3.  [SA43859] Google Chrome Multiple Vulnerabilities
4.  [SA43262] Sun Java JDK / JRE / SDK Multiple Vulnerabilities
5.  [SA43814] Apple Mac OS X Multiple Vulnerabilities
6.  [SA43832] Apple iPhone iOS "OfficeArtMetafileHeader" Parsing
              Vulnerability
7.  [SA43853] Google Picasa Insecure Library Loading Vulnerability
8.  [SA43860] IBM Lotus Domino Server Controller Authentication Bypass
              Vulnerability
9.  [SA43299] Microsoft Windows SMB Browser Election Request Parsing
              Vulnerability
10. [SA43865] openC Multiple Script Insertion Vulnerabilities

========================================================================
4) Secunia Community News

Events:
Secunia will be exhibiting at Infosecurity Europe (stand #B81) from
April 19-21 in London.

Read more:
http://secunia.com/company/events/infosec_2011/

Article:
PC World '6 Super Security Freebies': "These six free downloads will
bolster your system and network security"

Read more:
http://www.pcworld.com/article/223292/6_super_security_freebies.html

Free security factsheets:
Secunia's quarterly factsheets for Q1 2011 will be available on Friday
1st April.

Read more:
http://secunia.com/resources/factsheets/

========================================================================
5) Secunia Corporate News

New, free, live Secunia webinars on Microsoft Patch Tuesday (monthly
from 13th April 2011)

Learn more and register:
https://www1.gotomeeting.com/register/951818265/

========================================================================
6) This Week in Numbers

During the past week 50 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
  Windows             :      3 Secunia Advisories
  Unix/Linux          :     26 Secunia Advisories
  Other               :      1 Secunia Advisory  
  Cross platform      :     20 Secunia Advisories

Criticality Ratings:
  Extremely Critical  :      0 Secunia Advisories
  Highly Critical     :      3 Secunia Advisories
  Moderately Critical :     24 Secunia Advisories
  Less Critical       :     16 Secunia Advisories
  Not Critical        :      7 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web	: http://secunia.com/
E-mail	: support_at_private
Tel	: +45 70 20 51 44
Fax	: +45 70 20 51 45


___________________________________________________________      
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Received on Thu Mar 31 2011 - 23:28:03 PDT

This archive was generated by hypermail 2.2.0 : Thu Mar 31 2011 - 23:35:27 PDT