Velocity Reviews - Computer Hardware Reviews

Velocity Reviews > Newsgroups > Computing > NZ Computing > Firefox most vulnerable browser, Safari close second

Reply
Thread Tools

Firefox most vulnerable browser, Safari close second

 
 
Max Burke
Guest
Posts: n/a
 
      11-11-2009
Cenzic released its report revealing the most prominent types of Web
application vulnerabilities for the first half of 2009. The report
details the steady rise of attacks targeting these exploits ultimately
costing the U.S. a substantial amount of money in both IT damage and
identity theft.

Specifically, the report identified over 3,100 total vulnerabilities,
which is a 10 percent increase in Web application vulnerabilities
compared to the second half of 2008. Cenzic analyzed all reported
vulnerability information from sources including NIST, MITRE, SANS,
US-CERT, OSVDB, OWASP, as well as other third party databases for Web
application security issues reported during the first half of 2009.

Popular vendors including Sun, IBM, and Apache continue to be among the
top 10 most vulnerable Web applications named. The most common published
exploits on commercial applications were SQL Injection and Cross Site
Scripting (XSS) vulnerabilities, which account for 25 percent and 17
percent of all Web attacks, respectively:

http://www.net-security.org/secworld.php?id=8489

--
http://www.velocityreviews.com/forums/(E-Mail Removed)

Found Images
http://homepages.paradise.net.nz/~mlvburke
 
Reply With Quote
 
 
 
 
peterwn
Guest
Posts: n/a
 
      11-13-2009
On Nov 11, 3:11*pm, Max Burke <(E-Mail Removed)> wrote:
> Cenzic released its report revealing the most prominent types of Web
> application vulnerabilities for the first half of 2009. The report
> details the steady rise of attacks targeting these exploits ultimately
> costing the U.S. a substantial amount of money in both IT damage and
> identity theft.
>
> Specifically, the report identified over 3,100 total vulnerabilities,
> which is a 10 percent increase in Web application vulnerabilities
> compared to the second half of 2008. Cenzic analyzed all reported
> vulnerability information from sources including NIST, MITRE, SANS,
> US-CERT, OSVDB, OWASP, as well as other third party databases for Web
> application security issues reported during the first half of 2009.
>
> Popular vendors including Sun, IBM, and Apache continue to be among the
> top 10 most vulnerable Web applications named. The most common published
> exploits on commercial applications were SQL Injection and Cross Site
> Scripting (XSS) vulnerabilities, which account for 25 percent and 17
> percent of all Web attacks, respectively:
>
> http://www.net-security.org/secworld.php?id=8489
>


See:
http://www.cenzic.com/pr/20060718/

The impartiality of the Cenzic report is thus seriously questionable.

Of course Max would not know any better, he showed his utter ignorance
of copyright law and the GPL severasl years.

"Has the GPL been tested in [a NZ] court?" Yeah right!

 
Reply With Quote
 
 
 
 
Gib Bogle
Guest
Posts: n/a
 
      11-15-2009
peterwn wrote:
> On Nov 11, 3:11 pm, Max Burke <(E-Mail Removed)> wrote:
>> Cenzic released its report revealing the most prominent types of Web
>> application vulnerabilities for the first half of 2009. The report
>> details the steady rise of attacks targeting these exploits ultimately
>> costing the U.S. a substantial amount of money in both IT damage and
>> identity theft.
>>
>> Specifically, the report identified over 3,100 total vulnerabilities,
>> which is a 10 percent increase in Web application vulnerabilities
>> compared to the second half of 2008. Cenzic analyzed all reported
>> vulnerability information from sources including NIST, MITRE, SANS,
>> US-CERT, OSVDB, OWASP, as well as other third party databases for Web
>> application security issues reported during the first half of 2009.
>>
>> Popular vendors including Sun, IBM, and Apache continue to be among the
>> top 10 most vulnerable Web applications named. The most common published
>> exploits on commercial applications were SQL Injection and Cross Site
>> Scripting (XSS) vulnerabilities, which account for 25 percent and 17
>> percent of all Web attacks, respectively:
>>
>> http://www.net-security.org/secworld.php?id=8489
>>

>
> See:
> http://www.cenzic.com/pr/20060718/
>
> The impartiality of the Cenzic report is thus seriously questionable.
>
> Of course Max would not know any better, he showed his utter ignorance
> of copyright law and the GPL severasl years.
>
> "Has the GPL been tested in [a NZ] court?" Yeah right!
>


It's a dirty job, but ...
 
Reply With Quote
 
 
 
Reply

Thread Tools

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Trackbacks are On
Pingbacks are On
Refbacks are Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
How to close a TCP socket? (TCPSocket#close doesn't close it) Iñaki Baz Castillo Ruby 7 01-12-2010 01:32 PM
Firefox tops list of 12 most vulnerable apps Box750 Computer Security 3 12-17-2008 06:02 PM
document.close() on dynamic iframe on firefox does not close the connection. hyejin Javascript 8 08-29-2006 02:01 PM
Symantec: Mozilla browsers more vulnerable than IE History Fan Firefox 2 09-21-2005 01:05 AM
Safari (Mac) close() Marcia Gulesian HTML 7 08-13-2004 07:58 PM



Advertisments