SANS Top 20 Vulnerabilities v4.0

By Administrator on October 10, 2003 4:03 PM | | Comments (0) | TrackBacks (0)

One of the few useful things the FBI's (now the DHS's) NIPC has ever done is work with SANS to produce the SANS Top Twenty. A new version was released this week. It's a great resource for those that don't sit around thinking about risk mitigation all day long.

Three years ago, the SANS Institute and the National Infrastructure Protection Center (NIPC) at the FBI released a document summarizing the Ten Most Critical Internet Security Vulnerabilities. Thousands of organizations used that list, and the expanded Top Twenty lists that followed one and two years later, to prioritize their efforts so they could close the most dangerous holes first. The vulnerable services that led to the examples above Blaster, Slammer, and Code Red, as well as NIMDA worms - are on that list.

This updated SANS Top Twenty is actually two Top Ten lists: the ten most commonly exploited vulnerable services in Windows and the ten most commonly exploited vulnerable services in UNIX and Linux. Although there are thousands of security incidents each year affecting these operating systems, the overwhelming majority of successful attacks target one or more of these twenty vulnerable services.

Categories:

0 TrackBacks

Listed below are links to blogs that reference this entry: SANS Top 20 Vulnerabilities v4.0.

TrackBack URL for this entry: http://www.0xdeadbeef.org/mt/mt-tb.cgi/2831

Leave a comment

About this Entry

This page contains a single entry by Administrator published on October 10, 2003 4:03 PM.

Swooning Over The General was the previous entry in this blog.

Pictures from Guanella Pass is the next entry in this blog.

Find recent content on the main index or look in the archives to find all content.

Powered by Movable Type 4.01

Search