Apple has displaced Oracle as the aggregation with the best aegis vulnerabilities in its software, according to aegis aggregation Secunia. Over the aboriginal bisected of 2010, Apple had added appear flaws than any added vendor. Microsoft retains its third-place spot. Secunia has tracked aegis vulnerabilities and issues advisories back 2002, bearing alternate letters on the accompaniment of software. Together, the top ten vendors annual for some 38% of all flaws reported.
Though this does not necessarily beggarly that Apple'scomputer application is the best afraid in practice—the address takes no application of the severity of the flaws—it credibility at a growing trend in the apple of aegis flaws: the role of third-party software. Abounding of Apple's flaws are not in its operating system, Mac OS X, but rather incomputer application like Safari, QuickTime, and iTunes. Vendors like Adobe (with Flash and Adobe Reader) and Oracle (with Java) are analogously amenable for abounding of the flaws actuality reported.
To allegorize this point, the address includes accumulative abstracts for the cardinal of vulnerabilities begin on a Windows PC with the 50 best widely-used programs. Five years ago, there were added first-party flaws (in Windows and Microsoft's added software) than third-party. Back about 2007, the antithesis confused appear third-party programs. This year, third-party flaws are predicted to outnumber first-party flaws by two-to-one.
Secunia additionally makes a case that finer afterlight this third-partycomputer application is abundant harder to do; admitting Microsoft's Windows Amend and Microsoft Amend systems will accommodate aegis for about 35% of appear vulnerabilities, patching the butt requires the use of 13 or added afterlight systems. Some vendors—Apple, Mozilla, and Google, for example—do accept appropriate automated amend systems, but others crave chiral action by the user.
没有评论:
发表评论