TECH & More…

Posts Tagged ‘programming

Software Vulnerabilities – Top 10 Programming Errors.

Posted by: on: February 23, 2010

CWE/SANS institute, in collaboration with MITRE and other organizations, has compiled a list of top 25 most crucial programming errors.  These errors are often easy to find but are very dangerous can cause serious software vulnerabilities and cyber attacks.  Following are top 10 from the list.

  1. Cross-site Scripting.
  2. SQL Injection.
  3. Classic Buffer Overflow.
  4. Cross-site Request Forgery.
  5. Improper Access Control.
  6. Reliance on Untrusted Security Decision.
  7. Path Traversal.
  8. Unrestricted Upload of a Dangerous File Type.
  9. OS Command Injection.
  10. Sensitive Data not Encrypted.

What is new with the release that now government and businesses are agreeing to work on a contract that could hold vendor liable for security loop holes.

(Note: you can get the complete list of these errors from http://cwe.mitre.org/top25/index.html#Listing)

Tags: , , , , , , ,

Share this blog!

Bookmark and Share

Create a free website or blog at WordPress.com.