Symantec Internet Security Threat Report - Best Security Tips offers daily news, information, advices and tips about spyware, adware, viruses, trojans, web vulnerabilities, hackers, other threats    Fix Network Security Flaws on Your Biz Network - Trial | Register now | Login
   
TIPS NEWS TOOLS DOWNLOADS MALWARE FORUM BOOKS FREE MAGAZINES FREE WEBCASTS & VIDEOS
GFI LANguard Network Security Scanner - Dld 30-day trial! del.icio.us  digg  Furl  NewsVine  Spurl  Blinklist  Ma.gnolia  Reddit  Tailrank  YahooMyWeb 
Best Tips
Protect yourself against...
You Must Increase Intern...
Travel Tips to Safeguard...
Learn From Sarah Palin I...
AJAX Storage: A Look at ...
Top 10 Current Security ...
10 Reasons Why Your Comp...
PCLive.com Launches New...
McAfee Total Protection ...
How To Recognize and Avo...
Security Scanner
Security Categories
 1. Adware/Spyware
 2. Antivirus
 3. Firewall
 4. Phishing
 5. Linux Security
 6. Windows Security
 7. Security Incidents
 8. Web Security
 9. P2P Security
Advertise With Us!
Latest Viruses / Threats
Bugtraq: [USN-651-1] Ruby vulnerabilities
2008/10/10 19:37:29
Bugtraq: Re[2]: PR08-24: Proxim Tsunami MP.11 2411 vulnerable to SNMP Injection
2008/10/10 19:37:29
Bugtraq: [LC-2008-04] Nokia Browser Array Sort Denial Of Service Vulnerability
2008/10/10 19:37:29
Bugtraq: Re: PR08-24: Proxim Tsunami MP.11 2411 vulnerable to SNMP Injection
2008/10/10 19:37:29
Mal/Behav-134
2008/10/10 18:31:18
Downloads
 0.Zilla Video Converter & Decompiler
 1.Traffic Jam Extreme
 2.Wondershare Xbox360 Slideshow
 3.English-Korean Talking Dictionary for W...
 4.QR Photo to 3GP Converter
 5.MinuteManPlus
 6.Quick Flash Player
 7.tApCalc Scientific tape calculator(Arm ...
 8.Crazy Minesweeper
 9.Rapsody
Security News
Windows Server 2008 ...
Lavasoft Releases Ad...
Top Ten Spyware/Malw...
MyLaptopGPS™ Provide...
McAfee VirusScan Mob...
New Vulnerability in...
The Most Flawed and ...
Webroot Spy Sweeper ...
New AVG for Linux an...
Watchfire Extends Al...
RSS / Atom Feeds
Professional Security Resources: Symantec Internet Security Threat Report (2/4)  
Author: Max : 2007/3/24 Printer Friendly Page Tell a Friend
Symantec Internet Security Threat Report 
Vulnerability Trends Highlights
  • Symantec documented 2,526 vulnerabilities in the second half of 2006, 12 percent higher than the first half of 2006, and a higher volume than in any other previous six-month period.2
  • Symantec classified four percent of all vulnerabilities disclosed during this period as high severity, 69 percent were medium severity, and 27 percent were low severity.
  • Sixty-six percent of vulnerabilities disclosed during this period affected Web applications.
  • Seventy-nine percent of all vulnerabilities documented in this reporting period were considered to be easily exploitable.
  • Seventy-seven percent of all easily exploitable vulnerabilities affected Web applications, and seven percent affected servers.
  • Ninety-four percent of all easily exploitable vulnerabilities disclosed in the second half of 2006 were remotely exploitable.
  • In the second half of 2006, all the operating system vendors that were studied had longer average patch development times than in the first half of the year.
  • Sun Solaris had an average patch development time of 122 days in the second half of 2006, the highest of any operating system.
  • Sixty-eight percent of the vulnerabilities documented during this period were not confirmed by the affected vendor.
  • The window of exposure for vulnerabilities affecting enterprise vendors was 47 days.
  • Symantec documented 54 vulnerabilities in Microsoft Internet Explorer, 40 in the Mozilla browsers, and four each in Apple Safari and Opera.
  • Mozilla had a window of exposure of two days, the shortest of any Web browser during this period.
  • Twenty-five percent of exploit code was released less than one day after vulnerability publication.
  • Thirty-one percent was released in one to six days after vulnerability publication.
  • Symantec documented 12 zero-day vulnerabilities during this period, a significant increase from the one documented in the first half of 2006.
  • Symantec documented 168 vulnerabilities in Oracle database implementations, more than any other database.
 Page: 1 2 3 4 

Return to Category | Return To Main Index
Identity Theft Protection Services :
LifeLock Identity Theft Prevention Solution
Veracity Credit Optimization Services
Equifax Credit Watch
 Free Credit Report
Identity Truth
Privacy Matters 123



 

HOME | NEWS | SECURITY BLOG | TOOLS | DOWNLOADS | SECURITY BOOKS | TIPS | SITEMAP | TERMS AND CONDITIONS | INTERNET SECURITY SEARCH ENGINE | ADVERTISE ON THIS SITE | CONTACT
Jan '08 | Feb '08 | Mar '08 | Apr '08 | May '08 | Jun '08 | Jul '08 | Sep '08 
Best Security Downloads offers 4000+ free and free to try security downloads