[ISN] Secunia Weekly Summary - Issue: 2011-17

From: InfoSec News <alerts_at_private>
Date: Mon, 2 May 2011 04:53:41 -0500 (CDT)
========================================================================

                   The Secunia Weekly Advisory Summary
                        2011-04-21 - 2011-04-28
                       This week: 45 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Community News
5................................................Secunia Corporate News
6..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

Secunia CSI 4.1 is again "Highly Commended" in the category "Best SME
Security Solution" 2011
"I am extremely happy for Secunia's solutions to, year-on-year, receive
industry acknowledgement of this kind... I would in fact like to repeat
my words from last year, being that the 'key to our success lies in the
strategy of always delivering solutions that contain true value and less
gift wrapping'". Niels Henrik Rasmussen, CEO, Secunia.

Read more:
http://secunia.com/blog/214/

========================================================================
2) This Week in Brief:

CVE-2010-4701 fixed by MS11-024

Read more:
http://secunia.com/blog/216/

 --

Google Chrome
Some vulnerabilities have been reported in Google Chrome, which can be
exploited by malicious people to bypass certain security restrictions,
disclose potentially sensitive information, conduct spoofing attacks,
and potentially compromise a user's system.

Read more:
http://secunia.com/advisories/44375/

 --

Blue Coat
A vulnerability has been reported in Blue Coat BCAAA, which can be
exploited by malicious people to compromise a vulnerable system.

Read more:
http://secunia.com/advisories/44366/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA44119] Adobe Flash Player SharedObject Type Confusion
              Vulnerability
2.  [SA44153] Microsoft Internet Explorer Multiple Vulnerabilities
3.  [SA44248] Linux Kernel Denial of Service and Privilege Escalation
              Vulnerabilities
4.  [SA43262] Sun Java JDK / JRE / SDK Multiple Vulnerabilities
5.  [SA44323] zenphoto Cross-Site Scripting and Script Insertion
              Vulnerabilities
6.  [SA44245] nfs-utils "mount.nfs" RLIMIT_FSIZE Security Issue
7.  [SA44276] Todoyu "lang" Cross-Site Scripting Vulnerability
8.  [SA44197] Asterisk Security Bypass and Denial of Service
              Vulnerabilities
9.  [SA44229] IBM DB2 Two Vulnerabilities
10. [SA44264] Dolibarr ERP/CRM Cross-Site Scripting and File Disclosure
Vulnerabilities

========================================================================
4) Secunia Community News

Events:
Learn how to fix the failures of end-point security @ Open Group
Conference 2011
Listen to Secunia's Research Analyst Director, Stefan Frei's speaker
session and leverage his expertise (09 May, London, 14:45).
Find out more:
http://secunia.com/company/events/og_2011/

Secunia Research: Microsoft adds CVE-2010-4701 to MS11-024
The latest round of patches issued by Microsoft includes a fix via
MS11-024 for a publicly known vulnerability, CVE-2010-3974, in the
Microsoft Windows Fax Cover Page Editor.
Read more:
http://secunia.com/blog/216/

Review:
Lenny Zeltser praises the Secunia Personal Software Inspector (PSI)
The Secunia PSI is listed as one of the "Free Tools to Detect Local
Insecure Browser Plugins" by the Lenny Zeltser on Information Security
blog.
Read more:
http://secunia.com/company/blog_news/articles/213/

========================================================================
5) Secunia Corporate News

Leverage the industry's most extensive threat intelligence - Secunia
VIM
Gain a clearer overview of your IT security status and take pre-emptive
action with actionable and award-winning Vulnerability Intelligence:
http://secunia.com/products/corporate/vim/trial

========================================================================
6) This Week in Numbers

During the past week 45 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
Windows             :      5 Secunia Advisories
Unix/Linux          :     19 Secunia Advisories
Other               :      2 Secunia Advisories
Cross platform      :     19 Secunia Advisories

Criticality Ratings:
Extremely Critical  :      0 Secunia Advisories
Highly Critical     :      6 Secunia Advisories
Moderately Critical :     15 Secunia Advisories
Less Critical       :     23 Secunia Advisories
Not Critical        :      1 Secunia Advisory

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web	: http://secunia.com/
E-mail	: support_at_private
Tel	: +45 70 20 51 44
Fax	: +45 70 20 51 45


___________________________________________________________      
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Received on Mon May 02 2011 - 02:53:41 PDT

This archive was generated by hypermail 2.2.0 : Mon May 02 2011 - 02:59:51 PDT