Tuesday, November 22, 2005

SANS Top 20 Vulnerabilities...

This is one of those websites that you either know, or don't. SANS is one of the premier Security sites out there offering information and classes on computer security. I'm on a few different lists, although I mostly monitor the Internet Storm Center for possible threats. Due to their diligence, I've been able to stay one step ahead of many threats that have choked the 'net.

Anyway, they just released their Top 20 Vulnerabilities list:
Top Vulnerabilities in Windows Systems
  • W1. Windows Services
  • W2. Internet Explorer
  • W3. Windows Libraries
  • W4. Microsoft Office and Outlook Express
  • W5. Windows Configuration Weaknesses
Top Vulnerabilities in Cross-Platform Applications
  • C1. Backup Software
  • C2. Anti-virus Software
  • C3. PHP-based Applications
  • C4. Database Software
  • C5. File Sharing Applications
  • C6. DNS Software
  • C7. Media Players
  • C8. Instant Messaging Applications
  • C9. Mozilla and Firefox Browsers
  • C10. Other Cross-platform Applications
Top Vulnerabilities in UNIX Systems
  • U1. UNIX Configuration Weaknesses
  • U2. Mac OS X
Top Vulnerabilities in Networking Products
  • N1. Cisco IOS and non-IOS Products
  • N2. Juniper, CheckPoint and Symantec Products
  • N3. Cisco Devices Configuration Weaknesses

Link over to their site for more information on each area. I found it amuzing that W2 was Internet Explorer. Go Go ActiveX! And before you think they are biased toward OSS, C9 is Firefox.

Technorati Tags: , ,

No comments: