Information Security News mailing list archives

Secunia Weekly Summary - Issue: 2010-24

From: InfoSec News <alerts () infosecnews org>
Date: Fri, 18 Jun 2010 00:48:30 -0500 (CDT)
========================================================================

                  The Secunia Weekly Advisory Summary                  
                        2010-06-10 - 2010-06-17                        

                       This week: 89 advisories                        

========================================================================
Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4..................................................This Week in Numbers

========================================================================
1) Word From Secunia:


Stay Compliant

Alerts, Technical Descriptions, PoC, Links to patches, CVSS, CVE,
Changelogs, Alternative Remediation Strategies, and much more provided
in the Secunia Vulnerability Intelligence solutions

Free Trial
http://secunia.com/products/corporate/evm/trial/


========================================================================
2) This Week in Brief:

Some vulnerabilities have been reported in Adobe Flash Player, which
can be exploited by malicious people to conduct cross-site scripting
attacks or compromise a user's system.

http://secunia.com/advisories/40026

 --

Apple has issued a security update for Mac OS X, which fixes multiple
vulnerabilities.

http://secunia.com/advisories/40220

 --

Multiple vulnerabilities have been reported in Apple iTunes. Some have
an unknown impact and others can be exploited by malicious people to
bypass certain security restrictions, disclose sensitive information,
or compromise a user's system.

http://secunia.com/advisories/40196/

========================================================================
3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities,
subscribe to the Secunia business solutions:
http://secunia.com/advisories/business_solutions/

1.  [SA40026] Adobe Flash Player AVM2 "newfunction" Instruction
              Handling Vulnerability
2.  [SA40034] Adobe Reader/Acrobat authplay.dll AVM2 "newfunction"
              Handling Vulnerability
3.  [SA38547] Adobe Flash Player Domain Sandbox Bypass Vulnerability
4.  [SA39925] Mozilla Firefox Error Handling Information Disclosure
              Vulnerability
5.  [SA37255] Sun Java JDK / JRE Multiple Vulnerabilities
6.  [SA40070] OpenOffice.org Data Manipulation and Code Execution
              Vulnerabilities
7.  [SA40062] Microsoft Internet Explorer Multiple Vulnerabilities
8.  [SA40059] Microsoft Data Analyzer ActiveX Control Vulnerability
9.  [SA38416] Microsoft Internet Explorer Local File Disclosure
              Vulnerabilities
10. [SA40105] Apple Safari Multiple Vulnerabilities

========================================================================
4) This Week in Numbers

During the past week 89 Secunia Advisories have been released. All
Secunia customers have received immediate notification on the alerts
that affect their business.

This weeks Secunia Advisories had the following spread across platforms
and criticality ratings:

Platforms:
  Windows             :     16 Secunia Advisories
  Unix/Linux          :     24 Secunia Advisories
  Other               :      4 Secunia Advisories
  Cross platform      :     45 Secunia Advisories

Criticality Ratings:
  Extremely Critical  :      0 Secunia Advisories
  Highly Critical     :     19 Secunia Advisories
  Moderately Critical :     40 Secunia Advisories
  Less Critical       :     29 Secunia Advisories
  Not Critical        :      1 Secunia Advisory  

========================================================================

Secunia recommends that you verify all advisories you receive,
by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use
those supplied by the vendor.

Definitions: (Criticality, Where etc.)
http://secunia.com/advisories/about_secunia_advisories/

Subscribe:
http://secunia.com/advisories/weekly_summary/

Contact details:
Web     : http://secunia.com/
E-mail  : support () secunia com
Tel     : +45 70 20 51 44
Fax     : +45 70 20 51 45


_________________________________________________________________
Attend Black Hat USA 2010, hosted at Caesars Palace in Las Vegas, Nevada
July 24-29th, offering over 60 training sessions and 11 tracks of Briefings
from security industry elite. To sign up visit http://www.blackhat.com
Current thread:

Secunia Weekly Summary - Issue: 2010-24 InfoSec News (Jun 17)