The Secunia Weekly Advisory Summary 2010-07-15 - 2010-07-22

Les failles de cette semaine sont:

1.  [SA40026] Adobe Flash Player Multiple Vulnerabilities

Si vous n'avez pas mis a jour votre Flash, Installation Flash Player

2.  [SA40479] Google Chrome Multiple Vulnerabilities

Google Chrome pas de solution

3.  [SA37255] Sun Java JDK / JRE Multiple Vulnerabilities

Toujours la même histoire pas de solution

4.  [SA40566] Microsoft Office Outlook Linked Attachment Verification Vulnerability

Solution Windows Update

5.  [SA24314] Internet Explorer Charset Inheritance Cross-Site Scripting Vulnerability

Solution de pas surfer sur les site incriminés.

6.  [SA40034] Adobe Reader/Acrobat Multiple Vulnerabilities

Update

7.  [SA40554] Microsoft Office Access ActiveX Controls Two Vulnerabilities

Windows Update

8.  [SA39925] Mozilla Firefox Error Handling Information Disclosure Vulnerability

Update

9.  [SA40298] Microsoft Windows MFC Document Title Updating Buffer Overflow

Solution: Restrict access to applications allowing user-controlled input to be passed to the vulnerable function.

10. [SA40076] Microsoft Windows Help and Support Center URL Processing Vulnerability

Windows Update

========================================================================

                   The Secunia Weekly Advisory Summary                 

                        2010-07-15 - 2010-07-22                       

                        This week: 32 advisories                       

 ========================================================================

Table of Contents:

1.....................................................Word From Secunia
2....................................................This Week In Brief
3...............................This Weeks Top Ten Most Read Advisories
4..................................................This Week in Numbers

========================================================================

1) Word From Secunia:

"From 2007 to 2009 vulnerabilities in a typical end-user PC almost doubled from about 220 to 420."

Non-Microsoft software to blame for increase in vulnerabilities affecting typical Windows end-users, read more:

http://secunia.com/gfx/pdf/Secunia_Half_Year_Report_2010.pdf

========================================================================

2) This Week in Brief:

A vulnerability has been reported in Windows, which can be exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/40647

A vulnerability has been reported in Apple iTunes, which can be exploited by malicious people to compromise a user's system.

http://secunia.com/advisories/40660

========================================================================

3) This Weeks Top Ten Most Read Advisories:

For more information on how to receive alerts on these vulnerabilities, subscribe to the Secunia business solutions:

http://secunia.com/advisories/business_solutions/

1.  [SA40026] Adobe Flash Player Multiple Vulnerabilities

2.  [SA40479] Google Chrome Multiple Vulnerabilities

3.  [SA37255] Sun Java JDK / JRE Multiple Vulnerabilities 4.  [SA40566] Microsoft Office Outlook Linked Attachment Verification Vulnerability

5.  [SA24314] Internet Explorer Charset Inheritance Cross-Site Scripting Vulnerability

6.  [SA40034] Adobe Reader/Acrobat Multiple Vulnerabilities

7.  [SA40554] Microsoft Office Access ActiveX Controls Two Vulnerabilities

8.  [SA39925] Mozilla Firefox Error Handling Information Disclosure Vulnerability

9.  [SA40298] Microsoft Windows MFC Document Title Updating Buffer Overflow

10. [SA40076] Microsoft Windows Help and Support Center URL Processing Vulnerability

 ========================================================================

4) This Week in Numbers

During the past week 32 Secunia Advisories have been released. All Secunia customers have received immediate notification on the alerts that affect their business.

This weeks Secunia Advisories had the following spread across platforms and criticality ratings:

Platforms:

  Windows             :      6 Secunia Advisories

  Unix/Linux          :      7 Secunia Advisories

  Other               :      1 Secunia Advisory 

  Cross platform      :     18 Secunia Advisories

Criticality Ratings:

  Extremely Critical  :      0 Secunia Advisories

  Highly Critical     :      5 Secunia Advisories

  Moderately Critical :     15 Secunia Advisories

  Less Critical       :     10 Secunia Advisories

  Not Critical        :      2 Secunia Advisories

========================================================================

Secunia recommends that you verify all advisories you receive, by clicking the link.

Secunia NEVER sends attached files with advisories.

Secunia does not advise people to install third party patches, only use those supplied by the vendor.

Definitions: (Criticality, Where etc.)

http://secunia.com/advisories/about_secunia_advisories/

Subscribe:

http://secunia.com/advisories/weekly_summary/

Contact details:

Web   : http://secunia.com/

E-mail      : Cette adresse e-mail est protégée contre les robots spammeurs. Vous devez activer le JavaScript pour la visualiser.

Tel   : +45 70 20 51 44

Fax   : +45 70 20 51 45

========================================================================