======================================================================== The Secunia Weekly Advisory Summary 2012-02-02 - 2012-02-09 This week: 48 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4................................................Secunia Corporate News 5..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Secunia presentations at @ RSA Conference 2012, San Francisco, USA, 27 Feb-02 March * Carsten Eiram, Chief Security Specialist (Vulnerability Panel: Is it Zero Day or Zero Care? 28 Feb, 15:50, Room 102) * Morten R. Stengaard, Director Product Management & Quality Assurance (Is your mother/partner/child/friend vulnerable? 29 Feb, 14:30, Briefing Center) * Stefan Frei, Research Analyst Director (Sponsor case study track: How can a CIO secure a moving target with limited resources? 01 Mar, 09:30, Room 121) Also, meet the Secunia team on stand #817 to discuss how you can enhance your vulnerability/patch management process. Find out more: http://www.rsaconference.com/events/2012/usa/index.htm ======================================================================== 2) This Week in Brief: Oracle has acknowledged multiple vulnerabilities in Adobe Flash Player included in Solaris, which can be exploited by malicious people to bypass certain security restrictions and compromise a user's system. http://secunia.com/advisories/47886/ Tielei Wang has discovered two vulnerabilities in Hancom Office 2010 SE, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/47386/ Parvez Anwar has discovered a vulnerability in IvanView, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/47362/ Multiple vulnerabilities have been reported in RealPlayer, which can be exploited by malicious people to compromise a user's system. http://secunia.com/advisories/47896/ A vulnerability has been reported in PHP, which can be exploited by malicious people to compromise a vulnerable system. http://secunia.com/advisories/47806/ Apple has issued a security update for Mac OS X, which fixes multiple vulnerabilities. http://secunia.com/advisories/47843/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA47806] PHP "php_register_variable_ex()" Code Execution Vulnerability 2. [SA47843] Apple Mac OS X Multiple Vulnerabilities 3. [SA47856] Skype Unspecified Vulnerability 4. [SA47816] Mozilla Firefox / Thunderbird Multiple Vulnerabilities 5. [SA47884] ISC BIND Deleted Domain Name Resolving Vulnerability 6. [SA47839] Mozilla Firefox / Thunderbird Multiple Vulnerabilities 7. [SA47896] RealPlayer Multiple Vulnerabilities 8. [SA47161] Adobe Flash Player Unspecified Code Execution Vulnerability 9. [SA47865] IBM AIX "TCP large send offload" Denial of Service Vulnerability 10. [SA47657] 2X ApplicationServer TuxSystem ActiveX Control "ExportSettings()" Insecure Method ======================================================================== 4) Secunia Corporate News Kick-start new adventures with Secunia Are you seeking a challenging position in Product Development or Research? We are always on the lookout for new talented individuals who want to work within IT security and help businesses/private users manage and eliminate vulnerabilities. Visit our careers page here: http://secunia.com/company/jobs/ ======================================================================== 5) This Week in Numbers During the past week 48 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 10 Secunia Advisories Unix/Linux : 20 Secunia Advisories Other : 0 Secunia Advisories Cross platform : 17 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 11 Secunia Advisories Moderately Critical : 13 Secunia Advisories Less Critical : 21 Secunia Advisories Not Critical : 3 Secunia Advisories ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support_at_private Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ______________________________________________________________________________ Certified Ethical Hacker and CISSP training with Expanding Security gives the best training and support. Get a free live class invite weekly. Best program, best price. www.ExpandingSecurity.com/PainPillReceived on Fri Feb 10 2012 - 02:17:35 PST
This archive was generated by hypermail 2.2.0 : Fri Feb 10 2012 - 02:20:59 PST