Je vous rappelle que vous pouvez télécharger l'outil Secunia Personal Software Inspector (PSI) afin de savoir, et de pouvoir parer en temps réel aux failles de votre système. Une icône solution, ou directement patch, est disponible sur la droite de la faille,... Il est gratuit pour l'instant car une nouvelle version est en cours, et elle semblait payante alors profitez-en !
Pour l'actualité sécurité de cette semaine c'est chargé. Alors ne pas oublier la mise à jour Microsoft de mardi, et la mise à jour automatique, car un gros patch est disponible. Si vous travaillez dans une banque ou une grosse société genre IBM ou HP, ou une institution, une administration, ou si vous voulez être sûr de votre machine et voulez attendre une solution :
Je vous conseille de désinstallez Adobe Flash Player, Adobe Acrobat Reader, et Sun Java. Certains sites, dont Crashdebug, seront amputés de certains contenus vidéos, mais c'est le prix à payer pour être tranquille. Au fait Internet Explorer est aussi à la fête, pensez à Firefox je l'ai adopté depuis l'affaire google, il est très bien.
2010-06-03 - 2010-06-10
This week: 76 advisories
========================================================================
Table of Contents:
1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4..................................................This Week in Numbers
========================================================================
1) Word From Secunia:
Microsoft Patch Tuesday: Prioritisation
Our first choice, though, would be to address MS10-035, which covers multiple vulnerabilities in all versions of IE and secondly MS10-033, covering vulnerabilities exploitable e.g. via Media Player.
Read More:
========================================================================
2) This Week in Brief:
A vulnerability has been reported in Adobe Flash Player, which can be exploited by malicious people to compromise a user's system.
--
A vulnerability has been reported in Adobe Reader/Acrobat, which can be exploited by malicious people to compromise a user's system.
--
Tavis Ormandy has discovered a vulnerability in Microsoft Windows, which can be exploited by malicious people to compromise a user's system.
========================================================================
3) This Weeks Top Ten Most Read Advisories:
For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions:
1. [SA40026] Adobe Flash Player AVM2 "newfunction" Instruction
Handling Vulnerability
2. [SA40034] Adobe Reader/Acrobat authplay.dll AVM2 "newfunction"
Handling Vulnerability
3. [SA38547] Adobe Flash Player Domain Sandbox Bypass Vulnerability 4. [SA39925] Mozilla Firefox Error Handling Information Disclosure
Vulnerability
5. [SA37255] Sun Java JDK / JRE Multiple Vulnerabilities 6. [SA40070] OpenOffice.org Data Manipulation and Code Execution
Vulnerabilities
7. [SA40062] Microsoft Internet Explorer Multiple Vulnerabilities 8. [SA40059] Microsoft Data Analyzer ActiveX Control Vulnerability 9. [SA38416] Microsoft Internet Explorer Local File Disclosure
Vulnerabilities
10. [SA40105] Apple Safari Multiple Vulnerabilities
========================================================================
4) This Week in Numbers
During the past week 76 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business.
This weeks Secunia Advisories had the following spread across platforms and criticality ratings:
Platforms:
Windows : 15 Secunia Advisories
Unix/Linux : 21 Secunia Advisories
Other : 7 Secunia Advisories
Cross platform : 32 Secunia Advisories
Criticality Ratings:
Extremely Critical : 0 Secunia Advisories
Highly Critical : 15 Secunia Advisories
Moderately Critical : 28 Secunia Advisories
Less Critical : 28 Secunia Advisories
Not Critical : 5 Secunia Advisories
========================================================================
Secunia recommends that you verify all advisories you receive, by clicking the link.
Secunia NEVER sends attached files with advisories.
Secunia does not advise people to install third party patches, only use those supplied by the vendor.
Definitions: (Criticality, Where etc.)
Subscribe:
Contact details:
Tel : +45 70 20 51 44
Fax : +45 70 20 51 45
========================================================================
