|
|
Security Audits Conclusion Report for the year 2006
In the year 2006, GamaSEC Information Security Auditing and Consultancy Services performed 72 security auditing services for multitudinous sectors, many of which are electronic commerce, press, finance, pharmaceutics and heavy industry companies. The most preferred services are GamaNET Internet Security Audit, GamaAPP Application Security Audit and GamaLAN Local Network Security Audit.
Similar security vulnerabilities have been detected in many corporations as a result of Internet, Local Network and Application Audit services provided by GamaSEC Information Security Auditing and Consultancy Services.
The most frequent security vulnerabilities detected in the year 2006 have been assessed and a report has been issued. Following are the frequently detected security vulnerabilities. The report also includes the audited sectors, the extent of the audits, detailed description of detected security vulnerabilities, suggestions for solution and the references.
The Most Frequent Security Vulnerabilities in the Year 2006
- Incorrectly Configured or Out-of-date Intrusion Prevention Systems
- Broken Authentication and Session Management in Web Applications
- Systems not Protected by Firewall
- Cross-site Scripting in Web Applications
- Default Configuration of Systems Used for Testing or Production Trials
- SQL Injection Flaws in Web Applications
- Vulnerable Configuration of Wireless Clients and Access Points
- Special-purpose Network Devices whose Operating System and Software are not Updated
- Unprotected or Improperly Configured VoIP Systems
- Management of Local Network Printer, Switch, Router and Server Systems
Report (Turkish) 
|
|
