======================================================================== The Secunia Weekly Advisory Summary 2011-07-07 - 2011-07-14 This week: 39 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4................................................Secunia Community News 5................................................Secunia Corporate News 6..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Are 0-days overhyped? "Zero-day [threats] get the attention of many people, and there's not a lot we can do against zero-days," said Stefan Frei. But for vulnerabilities that have been fixed, "patching is very effective to eliminate those risks." Computerworld interviews Secunia and discusses how leaving a long-known vulnerability unpatched potentially poses a greater hacking risk to organisations than 0-day exploits. Read more: http://secunia.com/company/blog_news/articles/234/ ======================================================================== 2) This Week in Brief: Hossein Lotfi has discovered two vulnerabilities in VLC Media Player, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/45066/ -- A vulnerability has been reported in FreeType, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/45167/ -- ACROS Security has discovered a vulnerability in Sun Java, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/45173/ -- A vulnerability has been reported in Apple iOS, which can be exploited by malicious people to compromise a vulnerable system. http://secunia.com/advisories/45224/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA45173] Sun Java JRE Insecure Executable Loading Vulnerability 2. [SA44964] Adobe Flash Player Unspecified Memory Corruption Vulnerability 3. [SA45139] phpMyAdmin Multiple Vulnerabilities 4. [SA45077] Microsoft Visio Insecure Library Loading Vulnerability 5. [SA44784] Sun Java JDK / JRE / SDK Multiple Vulnerabilities 6. [SA45167] FreeType PostScript Type1 Font Parsing Vulnerability 7. [SA45186] Microsoft Windows win32k.sys Driver Multiple Vulnerabilities 8. [SA45165] Microsoft Windows Bluetooth Driver Object Handling Vulnerability 9. [SA45151] Apache XML Security Signature Key Parsing Denial of Service Vulnerabilities 10. [SA45066] VLC Media Player RealMedia and AVI File Parsing Vulnerabilities ======================================================================== 4) Secunia Community News Webinars on Microsoft Patch Tuesday ??? quick, easy, and on-demand Listen to Secunia???s Research Analyst Director present a compact summary of the key messages and updates from Microsoft in a fast and convenient way. Read more: http://secunia.com/resources/webinars/ ======================================================================== 5) Secunia Corporate News Be tactical in your handling of vulnerability threats The Secunia Vulnerability Intelligence Manager (VIM) enables you to take pre-emptive action against vulnerabilities in a simple, cost effective way. Read more and request a free trial: http://secunia.com/products/corporate/vim/ ======================================================================== 6) This Week in Numbers During the past week 39 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 7 Secunia Advisories Unix/Linux : 17 Secunia Advisories Other : 2 Secunia Advisories Cross platform : 13 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 6 Secunia Advisories Moderately Critical : 15 Secunia Advisories Less Critical : 12 Secunia Advisories Not Critical : 6 Secunia Advisories ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support_at_private Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/Received on Fri Jul 15 2011 - 02:14:02 PDT
This archive was generated by hypermail 2.2.0 : Fri Jul 15 2011 - 02:15:45 PDT