Security News > 2011 > April > Secunia Weekly Summary - Issue: 2011-16

Secunia Weekly Summary - Issue: 2011-16
2011-04-22 08:44

======================================================================== The Secunia Weekly Advisory Summary 2011-04-14 - 2011-04-21 This week: 101 advisories ======================================================================== Table of Contents: 1.....................................................Word From Secunia 2....................................................This Week In Brief 3...............................This Weeks Top Ten Most Read Advisories 4................................................Secunia Community News 5................................................Secunia Corporate News 6..................................................This Week in Numbers ======================================================================== 1) Word From Secunia: Secunia on The Telegraph's top list http://secunia.com/company/blog_news/articles/211/ ======================================================================== 2) This Week in Brief: Oracle, Oracle, Oracle, Oracle, and then some... http://secunia.com/advisories/44282/ http://secunia.com/advisories/44280/ http://secunia.com/advisories/44287/ http://secunia.com/advisories/44246/ http://secunia.com/advisories/44260/ http://secunia.com/advisories/44228/ http://secunia.com/advisories/44281/ http://secunia.com/advisories/44293/ http://secunia.com/advisories/44289/ http://secunia.com/advisories/44286/ http://secunia.com/advisories/44284/ http://secunia.com/advisories/44295/ http://secunia.com/advisories/44278/ http://secunia.com/advisories/44292/ http://secunia.com/advisories/44291/ http://secunia.com/advisories/44299/ http://secunia.com/advisories/44298/ http://secunia.com/advisories/44294/ http://secunia.com/advisories/44296/ http://secunia.com/advisories/44290/ http://secunia.com/advisories/43913/ http://secunia.com/advisories/44297/ http://secunia.com/advisories/44288/ http://secunia.com/advisories/44279/ http://secunia.com/advisories/44300/ http://secunia.com/advisories/44252/ http://secunia.com/advisories/44301/ http://secunia.com/advisories/44302/ http://secunia.com/advisories/44283/ http://secunia.com/advisories/44303/ http://secunia.com/advisories/44305/ http://secunia.com/advisories/44277/ Oracle customers have been overwhelmed with a massive update, the Secunia VIM provides precise alerting and tracking of the vulnerabilities and patches that apply to your infrastructure, saving you from sorting out one Oracle update from another. Actionable Vulnerability Intelligence: http://secunia.com/products/corporate/vim/ ======================================================================== 3) This Weeks Top Ten Most Read Advisories: For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions: http://secunia.com/advisories/business_solutions/ 1. [SA44119] Adobe Flash Player SharedObject Type Confusion Vulnerability 2. [SA44153] Microsoft Internet Explorer Multiple Vulnerabilities 3. [SA44160] Microsoft .NET Framework JIT Compiler Stack Corruption Vulnerability 4. [SA44162] Microsoft Windows JScript and VBScript Integer Overflow Vulnerability 5. [SA43751] Adobe Flash Player / AIR AVM2 Instruction Sequence Handling Vulnerability 6. [SA39122] Microsoft Excel Multiple Vulnerabilities 7. [SA44159] Microsoft Windows Messenger ActiveX Control Unspecified Vulnerability 8. [SA39903] Microsoft PowerPoint Three Vulnerabilities 9. [SA44121] Microsoft Reader Multiple Vulnerabilities 10. [SA43262] Sun Java JDK / JRE / SDK Multiple Vulnerabilities ======================================================================== 4) Secunia Community News Whitepaper: The (In) Security State of SCADA Software Systems Recently, there has been an increase of publicly disclosed vulnerabilities in Supervisory Control and Data Acquisition (SCADA) software systems. Read more: http://secunia.com/?action=fetch&filename=The_(In)_Security_State_of_SCADA_Software_Systems.pdf Whitepaper: Adobe Flash Player 0-day Exploit Analysis (CVE-2011-0611) Read the Secunia Research team's in-depth analysis of this Adobe Flash Player 0-day vulnerability: http://secunia.com/?action=fetch&filename=Secunia_Whitepaper_CVE-2011-0611.pdf The Guardian UK "The Patch Works" (page 41) - a consumer-focused article in the Information Security supplement. Read more: http://www.lyonsdown.co.uk/publications/2011/infosec.pdf ======================================================================== 5) Secunia Corporate News Come and meet Secunia in London, Zurich, and Vienna in May & June 2011 Optimise your handling of vulnerabilities and listen to Secunia's presentation on the fundamental failures of end-point security. Find out more: http://secunia.com/company/events/ Rapidly handle emerging threats with the Secunia VIM Gain a clearer overview of your IT security status with accurate and actionable Vulnerability Intelligence at your fingertips: http://secunia.com/products/corporate/vim/trial ======================================================================== 6) This Week in Numbers During the past week 101 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business. This weeks Secunia Advisories had the following spread across platforms and criticality ratings: Platforms: Windows : 18 Secunia Advisories Unix/Linux : 40 Secunia Advisories Other : 4 Secunia Advisories Cross platform : 39 Secunia Advisories Criticality Ratings: Extremely Critical : 0 Secunia Advisories Highly Critical : 13 Secunia Advisories Moderately Critical : 32 Secunia Advisories Less Critical : 49 Secunia Advisories Not Critical : 7 Secunia Advisories ======================================================================== Secunia recommends that you verify all advisories you receive, by clicking the link. Secunia NEVER sends attached files with advisories. Secunia does not advise people to install third party patches, only use those supplied by the vendor. Definitions: (Criticality, Where etc.) http://secunia.com/advisories/about_secunia_advisories/ Subscribe: http://secunia.com/advisories/weekly_summary/ Contact details: Web : http://secunia.com/ E-mail : support () secunia com Tel : +45 70 20 51 44 Fax : +45 70 20 51 45 ___________________________________________________________ Tegatai Managed Colocation: Four Provider Blended Tier-1 Bandwidth, Fortinet Universal Threat Management, Natural Disaster Avoidance, Always-On Power Delivery Network, Cisco Switches, SAS 70 Type II Datacenter. Find peace of mind, Defend your Critical Infrastructure. http://www.tegataiphoenix.com/


News URL

http://secunia.com/company/blog_news/articles/211/

Related Vulnerability

DATE CVE VULNERABILITY TITLE RISK
2011-04-13 CVE-2011-0611 Type Confusion vulnerability in multiple products
Adobe Flash Player before 10.2.154.27 on Windows, Mac OS X, Linux, and Solaris and 10.2.156.12 and earlier on Android; Adobe AIR before 2.6.19140; and Authplay.dll (aka AuthPlayLib.bundle) in Adobe Reader 9.x before 9.4.4 and 10.x through 10.0.1 on Windows, Adobe Reader 9.x before 9.4.4 and 10.x before 10.0.3 on Mac OS X, and Adobe Acrobat 9.x before 9.4.4 and 10.x before 10.0.3 on Windows and Mac OS X allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via crafted Flash content; as demonstrated by a Microsoft Office document with an embedded .swf file that has a size inconsistency in a "group of included constants," object type confusion, ActionScript that adds custom functions to prototypes, and Date objects; and as exploited in the wild in April 2011.
network
low complexity
adobe google suse opensuse CWE-843
8.8