[ISN] Secunia Weekly Summary - Issue: 2011-52

From: InfoSec News <alerts_at_private>
Date: Fri, 30 Dec 2011 03:57:05 -0600 (CST)
========================================================================

                   The Secunia Weekly Advisory Summary
                         2011-12-22 - 2011-12-29

                        This week: 20 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Corporate News
5..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

Make a fresh start with Secunia in 2012
Secunia is a fast growing company, with a mission to help businesses
and private users manage and eliminate the threat of unpatched
vulnerable software. We are, therefore, always on the lookout for new
talented individuals who want to work within IT security.

Are you seeking a challenging position developing new products,
solutions, and features? Do you have a passion for disassembling and
reverse engineering? Or, do you thrive on auditing open source code to
discover vulnerabilities and really understand these in minute detail?
Secunia currently has several exciting opportunities available in
Product Development and Research. Find out more here:
http://secunia.com/company/jobs/

========================================================================
2) This Week in Brief:

A vulnerability has been reported in Kerberos, which can be exploited
by malicious people to compromise a vulnerable system.

http://secunia.com/advisories/47348/

A vulnerability has been reported in Heimdal, which can be exploited by
malicious people to compromise a vulnerable system.

http://secunia.com/advisories/47399/

A vulnerability has been discovered in GNU inetutils, which can be
exploited by malicious people to compromise a vulnerable system.

http://secunia.com/advisories/46239/

Multiple vulnerabilities have been reported in IBM Rational Rhapsody,
which can be exploited by malicious people to compromise a user's
system.

http://secunia.com/advisories/47310/

Multiple vulnerabilities have been reported in BB FlashBack SDK, which
can be exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/47286/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA47237] Microsoft Windows win32k.sys Memory Corruption
               Vulnerability
2.  [SA47302] Mozilla Firefox / Thunderbird Multiple Vulnerabilities
3.  [SA46512] Oracle Java SE Multiple Vulnerabilities
4.  [SA47315] Android Browser Certificate Spoofing Vulnerability
5.  [SA47161] Adobe Flash Player Unspecified Code Execution
               Vulnerability
6.  [SA47340] Mozilla Firefox / Thunderbird JAR File Handling Weakness
7.  [SA47325] VLC Media Player "get_chunk_header()" Double-Free
               Vulnerability
8.  [SA47256] Microsoft Windows Phone Message Processing Denial of
               Service Vulnerability
9.  [SA47346] IBM DB2 / DB2 Connect Tivoli Monitoring Agent DT_RPATH
               Privilege Escalation Vulnerability
10. [SA47133] Adobe Reader/Acrobat Multiple Vulnerabilities

========================================================================
4) Secunia Corporate News

Events in 2012 . RSA USA, San Francisco, 27 Feb-02 March
It.s not too early to pencil the next RSA Conference into your diary.
If you plan on attending this year, visit the Secunia team on stand #
817 to discuss how you can enhance your vulnerability/patch management
process. Find out more:
http://www.rsaconference.com/events/2012/usa/index.htm

========================================================================
5) This Week in Numbers

During the past week 20 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
   Windows             :      0 Secunia Advisories
   Unix/Linux          :     10 Secunia Advisories
   Other               :      2 Secunia Advisories
   Cross platform      :      8 Secunia Advisories

Criticality Ratings:
   Extremely Critical  :      0 Secunia Advisories
   Highly Critical     :      8 Secunia Advisories
   Moderately Critical :      6 Secunia Advisories
   Less Critical       :      6 Secunia Advisories
   Not Critical        :      0 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web     : http://secunia.com/
E-mail  : support_at_private
Tel     : +45 70 20 51 44
Fax     : +45 70 20 51 45


_____________________________________________________
Subscribe to InfoSec News - www.infosecnews.org
http://www.infosecnews.org/mailman/listinfo/isn
Received on Fri Dec 30 2011 - 01:57:05 PST

This archive was generated by hypermail 2.2.0 : Fri Dec 30 2011 - 01:52:49 PST