FastFacts on network vulnerabilities

Internet Explorer

As the most widely used browser on earth, it is no surprise that hackers and other nefarious types have found numerous ways to breach Internet Explorer's security features. According to SANS, the most common threats to IE include memory corruption, phishing attacks and "execution of arbitrary scripts." Fortunately, Microsoft routinely releases security patches to reign in these threats. Unfortunately, this sometimes doesn't happen until after the damage has been done.

More information from SearchNetworking.com:
- Is a U.S. Internet blackout possible?
- Internet Explorer 7: Browsing and security enhancements

Cisco IOS routers and switches

Cisco's Internetwork Operating System routers and switches provide the backbone for nearly 85% of the Internet, according to SANS, making them a prime target for attack. While generally considered safe and secure, a number of vulnerabilities have been highlighted in the last year that can open the door to DoS and other attacks on enterprise networks that use Cisco IOS gear. Cisco, like Microsoft, publishes security alerts when a specific threat is found and SANS suggests that enterprises apply access lists on all interfaces and disable unnecessary features on its routers and switches to keep attacks at bay.

More information from SearchNetworking.com:
- New Cisco security strategy targets elusive threats
- Cisco stamps patches on timestamp flaws

CheckPoint, Symantec and Juniper gear

According to the SANS Institute, there are a number of vulnerabilities that could affect Juniper's operating system, JunOS, as well CheckPoint and Symantec VPN and firewalls. These vulnerabilities, it says, can be exploited "to reboot Juniper routers and compromise the Symantec and CheckPoint Firewall/VPN devices." The best way to protect enterprise networks from such attacks, says SANS, is to be sure to upgrade to the latest version of JunOS and run the patches released by CheckPoint and Symantec as soon as they become available.

More information from SearchNetworking.com:
- Juniper brings in the Funk for tighter security
- Major flaw affects multiple Symantec products

For the complete "Top 20 Internet Security Vulnerabilities," please visit the SANS Institute's Web site.

Digg This!     StumbleUpon     Del.icio.us

RELATED CONTENT Networking Tutorials and Technical Guides Network user management Storage area networks change management primer Virtualization change and configuration management primer Network change and configuration management primer 10 Gigabit Ethernet tutorial: Connecting data centers, storage, LAN and beyond Application switch testing: An easy RFP guide IT networking certifications and career paths for aspiring professionals Interop Las Vegas 2009: Special news coverage Cisco's Game Face: Can games replace traditional certification prep? IP addressing and subnetting explained Network Administration Why is access denied to my Active Directory (AD) users and computers? What network loss testing tools/methods calculate dropped packets from a PC? Network user management Do I have to disable DHCP on my router to create a DHCP server? What preventative maintenance procedures for network devices exist? Top 10 reasons why computers do not have network access to each other Troubleshooting -- 'Network Know-How' Chapter 17 How server virtualization improves efficiency in a client-server model Understand Windows tracert output to troubleshoot network connectivity Why would a computer show drive letters for discs that don't exist? Network Administration Research Network Security Monitoring and Analysis Application-specific network intrusion detection systems emerge Anomaly-based intrusion protection configuration and installation How can I calculate perimeter firewall throughput? How do I find the application on my network that's dropping packets? Integrating NAC with network security tools Where can I find a sample security audit report? How can I run my own? The firewall remains the network traffic cop, but its role is changing Troubleshooting VLANs: How to monitor 802.1q tagged traffic Poor data-loss prevention practices almost cost Intel a billion How can I block my competitor's IP address range from my website?

RELATED GLOSSARY TERMS Terms from Whatis.com − the technology online dictionary availability  (SearchNetworking.com) carrier detect  (SearchNetworking.com) fiber jumper  (SearchNetworking.com) layer 2  (SearchNetworking.com) MAE  (SearchNetworking.com) Network layer  (SearchNetworking.com) networking  (SearchNetworking.com) OSI  (SearchNetworking.com) patch cord  (SearchNetworking.com) staggered quadrature phase-shift keying  (SearchNetworking.com)

RELATED RESOURCES 2020software.com, trial software downloads for accounting software, ERP software, CRM software and business software systems Search Bitpipe.com for the latest white papers and business webcasts Whatis.com, the online computer dictionary