Top Sans 20

El SANS Institute nos saca su lista anual de vulnerabilidades mas explotadas (2006) con sus correspondientes boletin de seguridad y parches (si los tienen claro)

Sistemas Operativos

W1. Internet Explorer

• Vulnerability in Vector Markup Language Could Allow Remote Code Execution (MS06-055)
• Cumulative Security Update for Internet Explorer (MS06-042)
• Vulnerability in Microsoft JScript Could Allow Remote Code Execution (MS06-023)
• Cumulative Security Update for Internet Explorer (MS06-021)
• Cumulative Security Update for Internet Explorer (MS06-013)
• Cumulative Security Update for Internet Explorer (MS06-004)
• Cumulative Security Update for Internet Explorer (MS05-054)

W2. Windows Libraries

• Vulnerability in Windows Explorer Could Allow Remote Execution (MS06-057, MS06-015).
• Vulnerabilities in Microsoft Windows Hyperlink Object Library Could Allow Remote Code Execution (MS06-050)
• Vulnerability in HTML Help Could Allow Remote Code Execution (MS06-046)
• Vulnerability in Microsoft Windows Could Allow Remote Code Execution (MS06-043)
• Vulnerability in Graphics Rendering Engine Could Allow Remote Code Execution (MS06-026, MS06-001)
• Vulnerability in Embedded Web Fonts Could Allow Remote Code Execution (MS06-002)

W3. Microsoft Office

• PowerPoint Remote Code Execution Vulnerability (CVE-2006-5296)
• Word Malformed Stack Vulnerability (MS06-060)
• Office and PowerPoint Mso.dll Vulnerability (MS06-062, MS06-048)
• Excel Multiple Remote Code Execution Vulnerabilities (MS06-059)
• PowerPoint Malformed Record Vulnerability (MS06-058)
• Visio, Works and Projects VBA Vulnerability (MS06-047)
• Office Malformed String Parsing Vulnerability (MS06-038)
• Excel Malformed SELECTION record Vulnerability (MS06-037)
• Word Malformed Object Pointer Vulnerability (MS06-027)
• Outlook and Exchange TNEF Decoding Remote Code Execution (MS06-003)

W4. Windows Services

• Server Service (MS06-040, MS06-035)
• iRouting and Remote Access Service (MS06-025)
• Exchange Service (MS06-019)

W5. Windows Configuration Weaknesses ( blinda tus passwords!!)

M1. Mac OS X

Safari Vulnerabilities (includes zero-days)

HTML Rendering Vulnerabilities - CVE-2005-3705, CVE-2006-1987, CVE-2006-3505, CVE-2006-3946

Security Bypass Vulnerabilities - CVE-2005-2516, CVE-2006-0399, CVE-2006-0397, CVE-2006-0398.

ImageIO Vulnerabilities

Image Format Vulnerabilities - CVE-2006-1469, CVE-2006-1982, CVE-2005-2747

3rdParty Products' Vulnerabilities

Inherited Vulnerabilities - CVE-2006-0384

Wireless Driver Vulnerabilities

WiFi Driver Vulnerabilities - CVE-2006-3509, CVE-2006-3508, CVE-2006-3507

Viruses and Trojans

Viruses and Trojans - OSX/Leap-A trojan.

Other Vulnerabilities

CVE-2006-3498, CVE-2006-1450, CVE-2006-1449, CVE-2006-0848, CVE-2005-2518, CVE-2006-4394

U1. Unix Configuration Weaknesses

• http://isc.sans.org/diary.php?storyid=1541
• http://isc.sans.org/diary.php?storyid=1491
• http://isc.sans.org/diary.php?date=2006-08-01
• http://searchsecurity.techtarget.com/originalContent/0,289142,sid14_gci1094140,00.html

General UNIX Security Resources

• http://www.cisecurity.org
• http://www.bastille-linux.org
• http://www.puschitz.com/SecuringLinux.shtml

Documento original