======================================================================== The Secunia Weekly Advisory Summary 2011-04-21 - 2011-04-28 This week: 45 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4................................................Secunia Community News 5................................................Secunia Corporate News 6..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Secunia CSI 4.1 is again "Highly Commended" in the category "Best SME Security Solution" 2011 "I am extremely happy for Secunia's solutions to, year-on-year, receive industry acknowledgement of this kind... I would in fact like to repeat my words from last year, being that the 'key to our success lies in the strategy of always delivering solutions that contain true value and less gift wrapping'". Niels Henrik Rasmussen, CEO, Secunia. Read more: http://secunia.com/blog/214/ ======================================================================== 2) This Week in Brief: CVE-2010-4701 fixed by MS11-024 Read more: http://secunia.com/blog/216/ -- Google Chrome Some vulnerabilities have been reported in Google Chrome, which can be exploited by malicious people to bypass certain security restrictions, disclose potentially sensitive information, conduct spoofing attacks, and potentially compromise a user's system. Read more: http://secunia.com/advisories/44375/ -- Blue Coat A vulnerability has been reported in Blue Coat BCAAA, which can be exploited by malicious people to compromise a vulnerable system. Read more: http://secunia.com/advisories/44366/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA44119] Adobe Flash Player SharedObject Type Confusion Vulnerability 2. [SA44153] Microsoft Internet Explorer Multiple Vulnerabilities 3. [SA44248] Linux Kernel Denial of Service and Privilege Escalation Vulnerabilities 4. [SA43262] Sun Java JDK / JRE / SDK Multiple Vulnerabilities 5. [SA44323] zenphoto Cross-Site Scripting and Script Insertion Vulnerabilities 6. [SA44245] nfs-utils "mount.nfs" RLIMIT_FSIZE Security Issue 7. [SA44276] Todoyu "lang" Cross-Site Scripting Vulnerability 8. [SA44197] Asterisk Security Bypass and Denial of Service Vulnerabilities 9. [SA44229] IBM DB2 Two Vulnerabilities 10. [SA44264] Dolibarr ERP/CRM Cross-Site Scripting and File Disclosure Vulnerabilities ======================================================================== 4) Secunia Community News Events: Learn how to fix the failures of end-point security @ Open Group Conference 2011 Listen to Secunia's Research Analyst Director, Stefan Frei's speaker session and leverage his expertise (09 May, London, 14:45). Find out more: http://secunia.com/company/events/og_2011/ Secunia Research: Microsoft adds CVE-2010-4701 to MS11-024 The latest round of patches issued by Microsoft includes a fix via MS11-024 for a publicly known vulnerability, CVE-2010-3974, in the Microsoft Windows Fax Cover Page Editor. Read more: http://secunia.com/blog/216/ Review: Lenny Zeltser praises the Secunia Personal Software Inspector (PSI) The Secunia PSI is listed as one of the "Free Tools to Detect Local Insecure Browser Plugins" by the Lenny Zeltser on Information Security blog. Read more: http://secunia.com/company/blog_news/articles/213/ ======================================================================== 5) Secunia Corporate News Leverage the industry's most extensive threat intelligence - Secunia VIM Gain a clearer overview of your IT security status and take pre-emptive action with actionable and award-winning Vulnerability Intelligence: http://secunia.com/products/corporate/vim/trial ======================================================================== 6) This Week in Numbers During the past week 45 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 5 Secunia Advisories Unix/Linux : 19 Secunia Advisories Other : 2 Secunia Advisories Cross platform : 19 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 6 Secunia Advisories Moderately Critical : 15 Secunia Advisories Less Critical : 23 Secunia Advisories Not Critical : 1 Secunia Advisory ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support_at_private Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/Received on Mon May 02 2011 - 02:53:41 PDT
This archive was generated by hypermail 2.2.0 : Mon May 02 2011 - 02:59:51 PDT