Report: Ten Most Vulnerable Applications for 2010
Saturday, November 20, 2010
Application whitelisting firm Bit9 has released a report detailing the top ten most vulnerable applications available this year.
The criteria for making the list require that the application be a consumer or end-user product that is not classified as being malicious by reporting outlets and which contains at least one critical vulnerability.
The list of applications is organized in alphabetical order, and the report includes more details on the the following:
- Adobe Reader and Acrobat: Denial of service threat
- Adobe Flash: Execution of arbitrary code vulnerability
- Adobe Shockwave: Denial of service threat
- Apple QuickTime: Execution of arbitrary code vulnerability
- Apple Safari: Denial of service and execution of arbitrary code
- AppleWebKit: Denial of service and execution of arbitrary code
- Google Chrome: Denial of service threat
- Microsoft Internet Explorer: Execution of arbitrary code vulnerability
- Microsoft Office: Execution of arbitrary code vulnerability
- Mozilla Firefox: Denial of service and execution of arbitrary code
- Opera: Spoofing, redirects, and execution of arbitrary code
- Real Networks Real Player: Execution of arbitrary code vulnerability
- Sun Java Development Kit: Confidentiality, integrity, availability threats
The free report, titled Top Vulnerable Applications–2010, contains more details, including a list of CVE identifiers.
Source: http://www.bit9.com/files/Research_Vulnerable_Apps_2010_FINAL.pdf
Comments
Post a Comment