[ISN] Secunia Weekly Summary - Issue: 2011-43

From: InfoSec News <alerts_at_private>
Date: Fri, 28 Oct 2011 00:31:46 -0500 (CDT)
========================================================================

                   The Secunia Weekly Advisory Summary
                         2011-10-20 - 2011-10-27

                        This week: 81 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Community News
5................................................Secunia Corporate News
6..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

Secunia Wins 2011 Online Trust Leadership Award
"Secunia's efforts and resounding commitment to helping safeguard
consumers and enhancing online trust and confidence is to be
congratulated. They have demonstrated the ideals and principals that
are at the foundation of OTA's mission to enhance online trust and
confidence" said Craig Spiezle, Executive Director & President, Online
Trust Alliance (OTA).
Read more about why the OTA recognises Secunia.s commitment to
enhancing consumer online trust and confidence:
http://secunia.com/company/blog_news/news/268

========================================================================
2) This Week in Brief:

Some vulnerabilities have been reported in FreeType, which can be
exploited by malicious people to compromise an application using the
library.
http://secunia.com/advisories/46575/

rgod has discovered multiple vulnerabilities in Oracle AutoVue, which
can be exploited by malicious people to compromise a user's system.
http://secunia.com/advisories/46473/

Multiple vulnerabilities have been reported in Novell ZENworks
Configuration Management, which can be exploited by malicious people to
compromise a user's system.
http://secunia.com/advisories/46466/

Multiple vulnerabilities have been reported in Oracle Solaris, which
can be exploited by malicious, local users to disclose potentially
sensitive information, manipulate certain data, and cause a DoS (Denial
of Service), by malicious users to cause a DoS, and by malicious people
to cause a DoS and potentially compromise a vulnerable system.
http://secunia.com/advisories/46522/

Multiple vulnerabilities have been reported in Oracle Java SE, which
can be exploited by malicious users to disclose certain information and
by malicious people to disclose potentially sensitive information,
hijack a user's session, conduct DNS cache poisoning attacks,
manipulate certain data, cause a DoS (Denial of Service), and
compromise a vulnerable system.
http://secunia.com/advisories/46512/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1. [SA46512] Oracle Java SE Multiple Vulnerabilities
2. [SA46438] Microsoft Office Publisher Document Insertion Buffer
              Overflow Vulnerability
3. [SA46471] Google Chrome NSS Insecure Library Loading Vulnerability
4. [SA46474] Check Point Products ByteRange Filter Denial of Service
              Vulnerability
5. [SA46375] Opera Nested SVG Content Processing Code Execution
              Vulnerability
6. [SA46113] Adobe Flash Player Multiple Vulnerabilities
7. [SA46557] Network Security Services Insecure Library Loading
              Vulnerability
8. [SA46486] Check Point UTM-1 Edge / Safe_at_Office WebUI Multiple
              Vulnerabilities
9. [SA46469] IBM WebSphere Application Server for z/OS Two
              Vulnerabilities
10.[SA46594] Google Chrome Multiple Vulnerabilities

========================================================================
4) Secunia Community News

Borsen: Super Gazelle (Danish article)
Secunia is recognised by the leading Danish financial newspaper as one
of the few Danish companies that has experienced growth for five
consecutive years: http://secunia.com/company/blog_news/articles/269/

Join Secunia @ Infosecurity Europe, 02-03 November, Utrecht, the
Netherlands
Book a one-to-one meeting with the Secunia team and learn how you can
enhance your patch management process:
http://secunia.com/resources/events/infosec_nl_2011/

Gartner Symposium/ITxpo 2011, 07-10 November, Barcelona, Spain
Secunia will be exhibiting (stand ET14) at arguably the industry's
largest and most important annual gathering of CIOs and senior IT
leaders: http://www.gartner.com/technology/symposium/barcelona/

========================================================================
5) Secunia Corporate News

Pre-emptive action against vulnerabilities - a priority for effective
security strategies
The Secunia VIM enables you to simplify and strategize your handling of
emerging threats. Read more and request a free trial:
http://secunia.com/products/corporate/vim/

========================================================================
6) This Week in Numbers

During the past week 81 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
   Windows             :      7 Secunia Advisories
   Unix/Linux          :     48 Secunia Advisories
   Other               :      5 Secunia Advisories
   Cross platform      :     21 Secunia Advisories

Criticality Ratings:
   Extremely Critical  :      0 Secunia Advisories
   Highly Critical     :     13 Secunia Advisories
   Moderately Critical :     22 Secunia Advisories
   Less Critical       :     37 Secunia Advisories
   Not Critical        :      9 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web	: http://secunia.com/
E-mail	: support_at_private
Tel	: +45 70 20 51 44
Fax	: +45 70 20 51 45


_____________________________________________________
Subscribe to InfoSec News - www.infosecnews.org
http://www.infosecnews.org/mailman/listinfo/isn
Received on Thu Oct 27 2011 - 22:31:46 PDT

This archive was generated by hypermail 2.2.0 : Thu Oct 27 2011 - 22:35:33 PDT