It's depressing for security professionals to see just how many of the vulnerabilities on the new SANS/FBI Top 20 List have CVE numbers in the 1999-xxxx range--meaning that they were identified and fixed years ago on some systems. Newer problems . . .
It's depressing for security professionals to see just how many of the vulnerabilities on the new SANS/FBI Top 20 List have CVE numbers in the 1999-xxxx range--meaning that they were identified and fixed years ago on some systems. Newer problems appear in each category, but far too many bear old CVE numbers.

The SANS/FBI Top 20 List tracked actual attacks and listed them according to the frequency of their occurrence. My previous article examined Windows vulnerabilities on the list. Now, I'm going to look at the UNIX vulnerabilities, nearly all of which also apply to Linux.

The link for this article located at ZDNet is no longer available.