Sourcefire's report on 25 years of vulnerabilities also tackles what it acknowledges as a "controversial topic" reviewing vulnerabilities by vendor and open-source software grouping.Īccording to the report's analysis, the "10 worst offenders" from top down were: Microsoft Apple Oracle IBM Sun (acquired by Oracle) Cisco Mozilla Linux HP Adobe. Last year, though, "access-control issues reigned supreme." Buffer overflows are also more likely to have a high-severity rating, with catastrophic consequences leading to wholly compromised networks after an attack. When it comes to the type of vulnerabilities in general for everything, the category of "buffer overflows" is the most predominant at 7,006 occurrences, with cross-site scripting a close second. The iPhone has seen 210 vulnerabilities while Google Android logs in at 24, Windows Mobile at 14 and BlackBerry at 11. When it comes to smartphones, "the Apple iPhone by far has the most vulnerabilities reported for it," Younan says. The good news is that for the first time ever, high-severity vulnerabilities only make up 33% of the vulnerabilities assigned CVEs in the previous decade the average was 45%. In 2012, a total of 5,281 vulnerabilities were recorded. There was a notable decline in annually-recorded vulnerabilities until 2010.
0 Comments
Leave a Reply. |