Printer Friendly
The Free Library
14,792,997 articles and books
Member login
User name  
Password 
 
Join us Forgot password?

Bit9 Identifies the Top 15 Applications with Critical Security Vulnerabilities; List Reveals that Malicious Software is Not the Biggest Threat to Enterprise IT; Even Common Applications Pose a Risk.


CAMBRIDGE, Mass. -- Bit9, Inc., whose award-winning technology solves the problem of unwanted software on the desktop, today announced that it has compiled a list of the top 15 applications with known vulnerabilities. Often running outside of IT's knowledge or control, these popular applications run undetected by enterprise IT organizations and are difficult to detect and remove. The list was designed to help IT departments regain control over their desktop environments.

Each application on the list has the following characteristics:

--is well-known in the consumer space and frequently downloaded by individuals;

--is not classified as malicious software by enterprise IT organizations;

--contains at least one critical vulnerability registered in the U.S. National Institute of Standards and Technology's (NIST (National Institute of Standards & Technology, Washington, DC, www.nist.gov) The standards-defining agency of the U.S. government, formerly the National Bureau of Standards. It is one of three agencies that fall under the Technology Administration (www.technology. ) official vulnerability database;

--has a severity rating of between 7.0 - 10.0 (high) on the CVSS CVSS Common Vulnerability Scoring System
CVSS Currumbin Valley State School (Gold Coast, Australia)  scoring system Noun 1. scoring system - a system of classifying according to quality or merit or amount
rating system

classification system - a system for classifying things ;

--relies on the end user, rather than a central administrator, to manually patch or upgrade the software to eliminate the vulnerability, if such a patch exists.

"These popular software applications are frequently downloaded to corporate desktops and can present serious risks for enterprise computing Refers to information technology in the larger company. See enterprise data and enterprise networking.  environments," said Dr. Todd Brennan, co-founder and CTO (Chief Technical Officer) The executive responsible for the technical direction of an organization. See CIO and salary survey.  at Bit9. "Understanding what software is actually running in your organization across your entire desktop environment is the first step in regaining application control and protecting your corporate infrastructure."

Five of the top 15 applications with known vulnerabilities include:

1. Mozilla Firefox See Firefox.  1.0.7

2. Apple iTunes 6.02 & Quicktime 7.0.3

3. Skype Internet phone 1.4

4. Adobe Acrobat Reader 7.02, 6.03

5. Sun Java Run-Time Environment (language) Java Run-Time Environment - (JRE) The part of the Java Development Kit required to run Java programs. The JRE consists of the Java Virtual Machine, the Java platform core classes and supporting files.  5.0 Update 3, JRE See Java Runtime Environment.

JRE - Java Run-Time Environment  1.4.2_08

To obtain a copy of the research brief entitled "15 Popular Applications with Critical Vulnerabilities," please visit http://www.bit9.com/15apps.html. Readers will learn how to gain visibility and control of enterprise desktops and laptops to streamline IT, enforce policy compliance, and eliminate unwanted software.

About Bit9, Inc.

Bit9 is the first company to solve the problem of unwanted software on the desktop. As the only solution to detect, identify and stop spyware, malware, and non-business applications on desktops, laptops, and servers, Bit9 gives IT professionals unprecedented, network-wide visibility and control in real time. Bit9 provides the earliest and best possible protection against known and unknown intrusions, including Zero-day attacks. Founded in 2002 and headquartered in Cambridge, Massachusetts, Bit9 is a privately held company privately held company

A firm whose shares are held within a relatively small circle of owners and are not traded publicly. . For more information, visit www.bit9.com.

Bit9, Inc., Automatic Graylists, Find File, FileAdvisor, Parity, and ParityCenter are trademarks or registered trademarks of Bit9, Inc. All other names and trademarks are the property of their respective owners.
COPYRIGHT 2006 Business Wire
No portion of this article can be reproduced without the express written permission from the copyright holder.
Copyright 2006, Gale Group. All rights reserved. Gale Group is a Thomson Corporation Company.

 Reader Opinion

Title:

Comment:



 

Article Details
Printer friendly Cite/link Email Feedback
Publication:Business Wire
Date:Jun 20, 2006
Words:434
Previous Article:Old Mutual Financial Network Appoints Patrick D. Ferrer as Vice President, Variable Annuity Distribution.
Next Article:Cantata's Excel MSP 1010 Enhanced to Include IP Capabilities; Empowers Users to Develop Applications Running on IP Networks.(Company overview)
Topics:



Related Articles
Security Supplement.
Integrated security: a holistic approach to data storage security. (Storage Networking).
Symantec provides U.S. Department of Defense with security intelligence.(Symantec DeepSight Threat Management System and Symantec DeepSight Alert...
Answering the storage security challenge.(Security)
93% website apps vulnerable after 'fixing'.(News)
Microsoft releases 10 security updates.(Security)(Brief Article)
UK tops league of top bot countries.(Security)
Spyware--the hidden threat to business security.(SOFTWARE INTELLIGENCE)
87 percent of UK claim to have good understanding of spyware.(Security Trends)
REPORT REVEALS TOP 10 WEBSITE VULNERABILITIES.(Website overview)

Terms of use | Copyright © 2010 Farlex, Inc. | Feedback | For webmasters | Submit articles