[From eSecurity Planet]
Critical software vulnerabilities are increasing being found — not in
the operating system — but in applications and major databases.
The information comes out of a new quarterly report, the Top 20 Internet Security
Vulnerabilities from the SANS Institute, a major source of security
training and certification based in Bethesda, Md. Analysts from SANS had
been releasing the report annually. This is the first of what will become
quarterly releases, according to Alan Paller, director of research at the
SANS Institute.
The article continues at
http://www.esecurityplanet.com/prevention/article.php/3501891