infosec-news January 2011 archive
Main Archive Page > Month Archives  > infosec-news archives
infosec-news: [ISN] Secunia Weekly Summary - Issue: 2011-03

[ISN] Secunia Weekly Summary - Issue: 2011-03

From: InfoSec News <alerts_at_nospam>
Date: Fri Jan 21 2011 - 11:18:15 GMT
To: isn@infosecnews.org

========================================================================

                  The Secunia Weekly Advisory Summary
                        2011-01-13 - 2011-01-20

                       This week: 90 advisories

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4..................................................This Week in Numbers

========================================================================
1) Word From Secunia:

The threat intelligence you are receiving from the Secunia advisories
is limited.

Request a trial of the Secunia VIM, and get access to the full feed
along with:

- Complete threat intelligence on each vulnerability alert
- POC and Working exploits
- Extended analysis and Extended solution
- Guidance regarding alternative mitigation strategies

http://secunia.com/products/corporate/vim/

========================================================================
2) This Week in Brief:

Windows Applications Insecure Library Loading

The Official, Verified Secunia List:
http://secunia.com/advisories/windows_insecure_library_loading/

The list is continuously updated as we confirm the vulnerability
reports so check back regularly too see if any of your apps are
affected.

 --

Some vulnerabilities have been reported in Cisco IOS, which can be
exploited by malicious users to bypass certain security restrictions
and by malicious people to cause a DoS (Denial of Service).

Read more:
http://secunia.com/advisories/42917

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1. [SA42917] Cisco IOS Multiple Vulnerabilities
2. [SA42850] Google Chrome Multiple Vulnerabilities
3. [SA42804] Microsoft Data Access Components Two Vulnerabilities
4. [SA42779] Microsoft Windows Thumbnail Bitmap Parsing Buffer
              Overflow
5. [SA42510] Internet Explorer CSS Import Rule Processing
              Use-After-Free Vulnerability
6. [SA41917] Adobe Flash Player Multiple Vulnerabilities
7. [SA42931] Cisco ASA 5500 Series Multiple Vulnerabilities
8. [SA41340] Adobe Reader / Acrobat SING "uniqueName" Buffer Overflow
              Vulnerability
9. [SA41791] Sun Java JDK / JRE / SDK Multiple Vulnerabilities
10. [SA42894] Winlog Pro TCP/IP Server Buffer Overflow Vulnerability

========================================================================
4) This Week in Numbers

During the past week 90 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
  Windows : 3 Secunia Advisories
  Unix/Linux : 34 Secunia Advisories
  Other : 4 Secunia Advisories
  Cross platform : 48 Secunia Advisories

Criticality Ratings:
  Extremely Critical : 0 Secunia Advisories
  Highly Critical : 16 Secunia Advisories
  Moderately Critical : 34 Secunia Advisories
  Less Critical : 30 Secunia Advisories
  Not Critical : 10 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web : http://secunia.com/
E-mail : support@secunia.com
Tel : +45 70 20 51 44
Fax : +45 70 20 51 45

___________________________________________________________
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery
Network, Cisco Switches, SAS 70 Type II Datacenter.
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/