Critical software vulnerabilities are increasing being found -- not in the operating system -- but in applications and major databases.
The information comes out of a new quarterly report, the Top 20 Internet Security Vulnerabilities from the SANS Institute, a major source of security training and certification based in Bethesda, Md. Analysts from SANS had been releasing the report annually. This is the first of what will become quarterly releases, according to Alan Paller, director of research at the SANS Institute.
The article continues at http://www.esecurityplanet.com/prevention/article.php/3501891