======================================================================== The Secunia Weekly Advisory Summary 2011-10-20 - 2011-10-27 This week: 81 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4................................................Secunia Community News 5................................................Secunia Corporate News 6..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Secunia Wins 2011 Online Trust Leadership Award "Secunia's efforts and resounding commitment to helping safeguard consumers and enhancing online trust and confidence is to be congratulated. They have demonstrated the ideals and principals that are at the foundation of OTA's mission to enhance online trust and confidence" said Craig Spiezle, Executive Director & President, Online Trust Alliance (OTA). Read more about why the OTA recognises Secunia.s commitment to enhancing consumer online trust and confidence: http://secunia.com/company/blog_news/news/268 ======================================================================== 2) This Week in Brief: Some vulnerabilities have been reported in FreeType, which can be exploited by malicious people to compromise an application using the library. http://secunia.com/advisories/46575/ rgod has discovered multiple vulnerabilities in Oracle AutoVue, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/46473/ Multiple vulnerabilities have been reported in Novell ZENworks Configuration Management, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/46466/ Multiple vulnerabilities have been reported in Oracle Solaris, which can be exploited by malicious, local users to disclose potentially sensitive information, manipulate certain data, and cause a DoS (Denial of Service), by malicious users to cause a DoS, and by malicious people to cause a DoS and potentially compromise a vulnerable system. http://secunia.com/advisories/46522/ Multiple vulnerabilities have been reported in Oracle Java SE, which can be exploited by malicious users to disclose certain information and by malicious people to disclose potentially sensitive information, hijack a user's session, conduct DNS cache poisoning attacks, manipulate certain data, cause a DoS (Denial of Service), and compromise a vulnerable system. http://secunia.com/advisories/46512/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA46512] Oracle Java SE Multiple Vulnerabilities 2. [SA46438] Microsoft Office Publisher Document Insertion Buffer Overflow Vulnerability 3. [SA46471] Google Chrome NSS Insecure Library Loading Vulnerability 4. [SA46474] Check Point Products ByteRange Filter Denial of Service Vulnerability 5. [SA46375] Opera Nested SVG Content Processing Code Execution Vulnerability 6. [SA46113] Adobe Flash Player Multiple Vulnerabilities 7. [SA46557] Network Security Services Insecure Library Loading Vulnerability 8. [SA46486] Check Point UTM-1 Edge / Safe_at_Office WebUI Multiple Vulnerabilities 9. [SA46469] IBM WebSphere Application Server for z/OS Two Vulnerabilities 10.[SA46594] Google Chrome Multiple Vulnerabilities ======================================================================== 4) Secunia Community News Borsen: Super Gazelle (Danish article) Secunia is recognised by the leading Danish financial newspaper as one of the few Danish companies that has experienced growth for five consecutive years: http://secunia.com/company/blog_news/articles/269/ Join Secunia @ Infosecurity Europe, 02-03 November, Utrecht, the Netherlands Book a one-to-one meeting with the Secunia team and learn how you can enhance your patch management process: http://secunia.com/resources/events/infosec_nl_2011/ Gartner Symposium/ITxpo 2011, 07-10 November, Barcelona, Spain Secunia will be exhibiting (stand ET14) at arguably the industry's largest and most important annual gathering of CIOs and senior IT leaders: http://www.gartner.com/technology/symposium/barcelona/ ======================================================================== 5) Secunia Corporate News Pre-emptive action against vulnerabilities - a priority for effective security strategies The Secunia VIM enables you to simplify and strategize your handling of emerging threats. Read more and request a free trial: http://secunia.com/products/corporate/vim/ ======================================================================== 6) This Week in Numbers During the past week 81 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 7 Secunia Advisories Unix/Linux : 48 Secunia Advisories Other : 5 Secunia Advisories Cross platform : 21 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 13 Secunia Advisories Moderately Critical : 22 Secunia Advisories Less Critical : 37 Secunia Advisories Not Critical : 9 Secunia Advisories ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support_at_private Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 _____________________________________________________ Subscribe to InfoSec News - www.infosecnews.org http://www.infosecnews.org/mailman/listinfo/isnReceived on Thu Oct 27 2011 - 22:31:46 PDT
This archive was generated by hypermail 2.2.0 : Thu Oct 27 2011 - 22:35:33 PDT