[ISN] Secunia Weekly Summary - Issue: 2011-28

From: InfoSec News <alerts_at_private>
Date: Fri, 15 Jul 2011 02:14:02 -0700 (MST)
========================================================================

                   The Secunia Weekly Advisory Summary
                         2011-07-07 - 2011-07-14

                        This week: 39 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Community News
5................................................Secunia Corporate News
6..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

Are 0-days overhyped?
"Zero-day [threats] get the attention of many people, and there's not a
lot we can do against zero-days," said Stefan Frei. But for
vulnerabilities that have been fixed, "patching is very effective to
eliminate those risks."
Computerworld interviews Secunia and discusses how leaving a long-known
vulnerability unpatched potentially poses a greater hacking risk to
organisations than 0-day exploits.

Read more:
http://secunia.com/company/blog_news/articles/234/

========================================================================
2) This Week in Brief:

Hossein Lotfi has discovered two vulnerabilities in VLC Media Player,
which can be exploited by malicious people to compromise a user's
system.

http://secunia.com/advisories/45066/

  --

A vulnerability has been reported in FreeType, which can be exploited
by malicious people to compromise a user's system.

http://secunia.com/advisories/45167/

  --

ACROS Security has discovered a vulnerability in Sun Java, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/45173/

  --

A vulnerability has been reported in Apple iOS, which can be exploited
by malicious people to compromise a vulnerable system.

http://secunia.com/advisories/45224/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA45173] Sun Java JRE Insecure Executable Loading Vulnerability
2.  [SA44964] Adobe Flash Player Unspecified Memory Corruption
               Vulnerability
3.  [SA45139] phpMyAdmin Multiple Vulnerabilities
4.  [SA45077] Microsoft Visio Insecure Library Loading Vulnerability
5.  [SA44784] Sun Java JDK / JRE / SDK Multiple Vulnerabilities
6.  [SA45167] FreeType PostScript Type1 Font Parsing Vulnerability
7.  [SA45186] Microsoft Windows win32k.sys Driver Multiple
               Vulnerabilities
8.  [SA45165] Microsoft Windows Bluetooth Driver Object Handling
               Vulnerability
9.  [SA45151] Apache XML Security Signature Key Parsing Denial of
               Service Vulnerabilities
10. [SA45066] VLC Media Player RealMedia and AVI File Parsing
               Vulnerabilities

========================================================================
4) Secunia Community News

Webinars on Microsoft Patch Tuesday ??? quick, easy, and on-demand
Listen to Secunia???s Research Analyst Director present a compact
summary of the key messages and updates from Microsoft in a fast and
convenient way.

Read more:
http://secunia.com/resources/webinars/

========================================================================
5) Secunia Corporate News

Be tactical in your handling of vulnerability threats
The Secunia Vulnerability Intelligence Manager (VIM) enables you to
take pre-emptive action against vulnerabilities in a simple, cost
effective way.

Read more and request a free trial:
http://secunia.com/products/corporate/vim/

========================================================================
6) This Week in Numbers

During the past week 39 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
   Windows             :      7 Secunia Advisories
   Unix/Linux          :     17 Secunia Advisories
   Other               :      2 Secunia Advisories
   Cross platform      :     13 Secunia Advisories

Criticality Ratings:
   Extremely Critical  :      0 Secunia Advisories
   Highly Critical     :      6 Secunia Advisories
   Moderately Critical :     15 Secunia Advisories
   Less Critical       :     12 Secunia Advisories
   Not Critical        :      6 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web	: http://secunia.com/
E-mail	: support_at_private
Tel	: +45 70 20 51 44
Fax	: +45 70 20 51 45



___________________________________________________________
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery
Network, Cisco Switches, SAS 70 Type II Datacenter.
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/
Received on Fri Jul 15 2011 - 02:14:02 PDT

This archive was generated by hypermail 2.2.0 : Fri Jul 15 2011 - 02:15:45 PDT