[ISN] Secunia Weekly Summary - Issue: 2012-08

From: InfoSec News <alerts_at_private>
Date: Fri, 24 Feb 2012 05:21:07 -0600 (CST)
========================================================================

                   The Secunia Weekly Advisory Summary
                         2012-02-16 - 2012-02-23

                        This week: 85 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4................................................Secunia Corporate News
5..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

Secunia a finalist at SC Awards Europe 2012
Following SC Magazine's 5-Star overall rating for the Secunia Corporate
Software Inspector (CSI), the Secunia CSI has once again been selected
as a finalist by the magazine's annual European awards . this time in
the category of "Best Security Management." Read more:
http://secunia.com/blog/302/

========================================================================
2) This Week in Brief:

Luigi Auriemma has discovered a vulnerability in Unity Web Player,
which can be exploited by malicious people to compromise a user's
system.

http://secunia.com/advisories/48103/

Two vulnerabilities have been reported in Pale Moon, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/48110/

Digital Security Research Group has discovered a vulnerability in
Net4Switch ipswcom ActiveX Control, which can be exploited by malicious
people to compromise a user's system.

http://secunia.com/advisories/48125/

Luigi Auriemma has discovered a vulnerability in Novell Messenger
Client, which can be exploited by malicious people to compromise a
user's system.

http://secunia.com/advisories/48126/

A vulnerability has been reported in AQUIS and TERMIS, which can be
exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/48093/

Mozilla has acknowledged a vulnerability in Firefox, Thunderbird, and
Seamonkey, which can be exploited by malicious people to potentially
compromise a user's system.

http://secunia.com/advisories/48089/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA48009] Oracle Java SE Multiple Vulnerabilities
2.  [SA48033] Adobe Flash Player Multiple Vulnerabilities
3.  [SA48089] Mozilla Firefox / Thunderbird / Seamonkey libpng Integer
               Overflow
4.  [SA47161] Adobe Flash Player Unspecified Code Execution
               Vulnerability
5.  [SA48026] libpng "png_decompress_chunk()" Integer Overflow
               Vulnerability
6.  [SA48008] Mozilla Firefox / Thunderbird / SeaMonkey XBL Binding
               Use-After-Free Vulnerability
7.  [SA48016] Google Chrome Multiple Vulnerabilities
8.  [SA47922] Cisco IronPort Encryption Appliance "header" Cross-Site
               Scripting Vulnerability
9.  [SA47949] Microsoft Windows C Run-Time Library Incorrect Buffer
               Size Calculation Vulnerability
10. [SA48092] Symantec pcAnywhere Denial of Service Vulnerability

========================================================================
4) Secunia Corporate News

Dark Reading: Nearly 80% Of All Bugs Are In Third-Party Apps
Kelly Jackson Higgins interviews Stefan Frei, Secunia's Research
Analyst Director:
http://www.darkreading.com/vulnerability-management/167901026/security/vulnerabilities/232600860/nearly-80-of-all-bugs-are-in-third-party-apps.html


eWeek: Adobe Patches Critical Shockwave Player Bugs During February
Update
Reviews the "heavy load of third-party patches to apply this month" and
Secunia's Yearly Report 2011:
http://www.eweek.com/c/a/Security/Adobe-Patches-Critical-Shockwave-Player-Bugs-During-February-Update-602580/

========================================================================
5) This Week in Numbers

During the past week 85 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
   Windows             :      8 Secunia Advisories
   Unix/Linux          :     42 Secunia Advisories
   Other               :      2 Secunia Advisories
   Cross platform      :     33 Secunia Advisories

Criticality Ratings:
   Extremely Critical  :      0 Secunia Advisories
   Highly Critical     :     20 Secunia Advisories
   Moderately Critical :     30 Secunia Advisories
   Less Critical       :     27 Secunia Advisories
   Not Critical        :      8 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web     : http://secunia.com/
E-mail  : support_at_private
Tel     : +45 70 20 51 44
Fax     : +45 70 20 51 45


______________________________________________________________________________
Learn how to be a Pen Tester or a CISSP with Expanding Security online. Get
a free class invitation and see how good and fun the program really is.
http://www.expandingsecurity.com/PainPill
Received on Fri Feb 24 2012 - 03:21:07 PST

This archive was generated by hypermail 2.2.0 : Fri Feb 24 2012 - 03:18:36 PST