======================================================================== The Secunia Weekly Advisory Summary 2011-03-31 - 2011-04-07 This week: 71 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4................................................Secunia Community News 5................................................Secunia Corporate News 6..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Secunia is now a member of the Information Security Forum (ISF); the leading independent authority on best practice in the field of information risk management. "Senior business decision makers such as CFOs, CEOs, and CCOs are now starting to become more aware of the vulnerability threat and are taking greater responsibility. Transparency, control, and prevention through risk management are critical elements. In turn, risk management would be incomplete without considering information system security." Brian Birkvald, Security Partner Director, Secunia. Read the official announcement: http://secunia.com/company/blog_news/blog/201/ ======================================================================== 2) This Week in Brief: Windows Applications Insecure Library Loading The Official, Verified Secunia List: http://secunia.com/advisories/windows_insecure_library_loading/ The list is continuously updated as we confirm vulnerability reports, remember to check back regularly to see if any of your programs are affected. -- A vulnerability has been discovered in VLC Media Player, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/44064 -- A vulnerability has been reported in Juniper Networks Secure Access, which can be exploited by malicious people to bypass certain security restrictions. http://secunia.com/advisories/43983/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA43751] Adobe Flash Player / AIR AVM2 Instruction Sequence Handling Vulnerability 2. [SA17865] VisNetic Mail Server Multiple Webmail Vulnerabilities 3. [SA29106] Joomla! "mosConfig_absolute_path" File Inclusion 4. [SA43262] Sun Java JDK / JRE / SDK Multiple Vulnerabilities 5. [SA17046] IceWarp Web Mail Multiple Vulnerabilities 6. [SA43983] Juniper IVE Network Connect Credential Provider Security Bypass 7. [SA43859] Google Chrome Multiple Vulnerabilities 8. [SA43898] Erlang/OTP Two Vulnerabilities 9. [SA43814] Apple Mac OS X Multiple Vulnerabilities 10. [SA43994] IBM Tivoli Directory Server Multiple Vulnerabilities ======================================================================== 4) Secunia Community News Events: Secunia will be attending various Q2 events: Infosecurity Europe, Open Group Conference, InfoProtect Summit, FIRST, and Swiss Cyber Storm. Read more & book a meeting: http://secunia.com/company/events/infosec_2011/ Article: Daily Finance .Hit By the Epsilon Security Breach? Here's How to Protect Your Personal Information.: http://www.dailyfinance.com/story/market-news/epsilon-security-breach-protect-your-p/19901868/ Free factsheets: Secunia.s Security Factsheets for Q1 2011 are now available, comprising security information per vendor, browser, and Windows operating system: http://secunia.com/resources/factsheets/ Webinar: Tune in to Stefan Frei, Secunia.s Research Analyst Director, presenting the key findings of the Secunia Security Factsheets Q1 2011: http://www.youtube.com/user/Secunia#p/a/u/0/0JCA1Is7I4s The Telegraph rates Secunia as one of Europe.s best technology companies, selected according to five criteria: team, scalability, traction, market and "wow factor". Read more: http://www.telegraph.co.uk/technology/technology-startup100/8428669/Start-Up-100-A-Z.html ======================================================================== 5) Secunia Corporate News Free webinars on Microsoft Patch Tuesday: leverage Secunia.s award-winning analysis to find out the key facts from Microsoft in a convenient and compact way. Learn more and register: https://www1.gotomeeting.com/register/951818265 ======================================================================== 6) This Week in Numbers During the past week 71 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 4 Secunia Advisories Unix/Linux : 39 Secunia Advisories Other : 2 Secunia Advisories Cross platform : 26 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 11 Secunia Advisories Moderately Critical : 31 Secunia Advisories Less Critical : 22 Secunia Advisories Not Critical : 7 Secunia Advisories ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support_at_private Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/Received on Mon Apr 11 2011 - 00:33:13 PDT
This archive was generated by hypermail 2.2.0 : Mon Apr 11 2011 - 00:38:26 PDT