Sans said the document had been produced because only a limited number of security holes were exploited by the bulk of virus attacks. The top 20 includes specific sections on general vulnerabilities, Windows vulnerabilities and Unix vulnerabilities.
Wednesday's patch addresses in part the vulnerabilities uncovered by GreyMagic. In October, GreyMagic Software reported eight security vulnerabilities it deemed "critical" because of a flaw in how Internet Explorer caches Web objects.
Microsoft CEO Steve Ballmer has outlined a series of new initiatives and investments aimed at shoring up the company's increasingly battered security reputation. But analyst Gartner has joined recent criticism of Microsoft's security record saying...
We're most concerned with 'wormable' vulnerabilities - ones that can be exploited using worms, as they have the largest impact on business. For example, Code Red exploited a vulnerability in MS IIS web service software - we would exploit the same...
All of the 13 Office-related vulnerabilities addressed by Tuesday's patches can be exploited by crafting a malicious Office document, according to Microsoft's security alerts. This means the "mailslot" flaw could be exploited to launch a worm that...
Another of this month's flaws that could be exploited without any user interaction lies in the Windows Domain Name System (DNS) client, which is used to help translate URLs into numerical IP addresses.
Did you find this white paper useful? 
White Paper RSS
Download
Register
