Jump to content


2011 CWE/SANS Top 25

  • Please log in to reply
No replies to this topic

#1 AplusWebMaster



  • SWI Friend
  • PipPipPipPipPip
  • 11,104 posts

Posted 28 June 2011 - 04:00 AM


2011 CWE/SANS Top 25
- http://cwe.mitre.org/top25/
June 27, 2011 - "... list of the most widespread and critical errors that can lead to serious vulnerabilities in software. They are often easy to find, and easy to exploit. They are dangerous because they will frequently allow attackers to completely take over the software, steal data, or prevent the software from working at all. The Top 25 list is a tool for education and awareness to help programmers to prevent the kinds of vulnerabilities that plague the software industry, by identifying and avoiding all-too-common mistakes that occur before software is even shipped... The list is the result of collaboration between the SANS Institute, MITRE, and many top software security experts in the US and Europe. It leverages experiences in the development of the SANS Top 20 attack vectors ( http://www.sans.org/top20/ ) and MITRE's Common Weakness Enumeration (CWE) ( http://cwe.mitre.org/ )..."

Listing of the Top 25
- http://cwe.mitre.org/top25/#Listing

Mitigations ...
- http://cwe.mitre.org...itigations.html

FAQs ...
- http://cwe.mitre.org...faq.html#Top_25

:ph34r: :!:
.The machine has no brain.
 ......... Use your own.
Browser check for updates here.
YOU need to defend against -all- vulnerabilities.
Hacks only need to find -1- to get in...

Member of UNITE
Support SpywareInfo Forum - click the button