SANS Releases List Of Security Flaws

Filed under
Security

The SANS Institute recently discovered more than 600 new Internet security vulnerabilities during the first quarter of 2005. This group has identified the most critical vulnerabilities disclosed in Q1 that pose critical risks that need to be addressed through patching and other defensive actions.

According to the institute, individuals and organizations that do not correct these problems face a heightened threat that remote, unauthorized hackers will take control of their computers and use them for identity theft, for industrial espionage, or for distributing spam or pornography.

"These critical vulnerabilities are widespread and many of them are being exploited, right now, in our homes and in our offices," according to Alan Paller, director of research for the SANS Institute. "We're publishing this list as a red flag for individuals as well as IT departments. Too many people are unaware of these vulnerabilities, or mistakenly believe their computers are protected," added Paller.

According to the report, some of the mot commonly affected software include Microsoft Internet Explorer, Windows Media Player, Messenger, and MSN Messenger, Microsoft Windows XP SP1 and 2, Windows 2000 Service Pack 3 and 4 and Windows Server 2003.

Full Story.