Slashdot Mirror

← Back to Stories (view on slashdot.org)

SANS/FBI Release Top 20 Security Vulnerabilities

Posted by CowboyNeal on Thursday October 3, 2002 @10:43AM from the lock-them-boxes-down dept.

theBraindonor writes "SANS Institute and the FBI have compiled a listing of the The Twenty Most Critical Internet Security Vulnerabilities. The list is broken down into two groups: Windows Systems and Unix Systems." The list of Unix vulnerabilities is also a list of the network programs I (and presumably many others) use most. It's a good thing there's BugTraq.

3 of 268 comments (clear)

Min score:

Reason:

Sort:

Re:Now if only ... by Zebbers · 2002-10-03 11:32 · Score: 0, Redundant

haha
The top 5 are, by Herkum01 · 2002-10-03 11:48 · Score: 0, Redundant
1. Windows 95
2. Windows 98/ME
3. Windows NT
4. Windows 2000
5. Windows XP
Wait, there are more than 5?
Re:Well, that settles that argument by iabervon · 2002-10-03 13:05 · Score: 2, Redundant

Actually, my list of 10 would be: IIS, IE, Outlook, Apache, random UNIX services you don't mean to have, sendmail, bind, sshd, plaintext passwords, ftpd. There's only 3 Windows ones, because you can probably break into more Windows boxes than you want to with just those 3. None of the other Windows vulnerabilities matter much, because you can't use them to break into UNIX systems.