It's depressing for security professionals to see just how many of the vulnerabilities on the new SANS/FBI Top 20 List have CVE numbers in the 1999-xxxx range -- meaning that they were identified and fixed years ago on some systems. Newer . . .
It's depressing for security professionals to see just how many of the vulnerabilities on the new SANS/FBI Top 20 List have CVE numbers in the 1999-xxxx range -- meaning that they were identified and fixed years ago on some systems. Newer problems appear in each category, but far too many bear old CVE numbers.

The SANS/FBI Top 20 List tracked actual attacks and listed them according to the frequency of their occurrence. I'm going to look at the Unix vulnerabilities, nearly all of which also apply to Linux. Unix vulnerabilities Here is the list of the top 10 Unix vulnerabilities:

The link for this article located at ZDNet UK is no longer available.