The #Shell » Security http://blog.rootshell.ir Hey, It's root, Take care Sun, 25 Dec 2011 07:20:42 +0000 en hourly 1 http://wordpress.org/?v=3.3.1 Best Treatment is to Avoid Vulnerabilities in First Place http://blog.rootshell.ir/2010/02/best-treatment-is-to-avoid-vulnerabilities-in-first-place/ http://blog.rootshell.ir/2010/02/best-treatment-is-to-avoid-vulnerabilities-in-first-place/#comments Fri, 19 Feb 2010 06:03:06 +0000 root http://blog.rootshell.ir/?p=103 The second agreement on serious programming errors have just taken place and computer science professionals reached to a formal agreement on top 25 programming errors. The main idea for such a list is to help and educate programmers to prevent kinds of vulnerabilities that are reason for almost all cyber attacks.

The 2010 CWE/SANS Top 25 Most Dangerous Programming Errors is a list of the most widespread and critical programming errors that can lead to serious software vulnerabilities. They are often easy to find, and easy to exploit. They are dangerous because they will frequently allow attackers to completely take over the software, steal data, or prevent the software from working at all.

The list for 2010 bears a striking resemblance to last year’s list that SANS organization released. Note that Cross-site scripting (XSS) attack and SQL Injection are still listed as top pitfalls.

]]> http://blog.rootshell.ir/2010/02/best-treatment-is-to-avoid-vulnerabilities-in-first-place/feed/ 0