This article has been announced years ago though it still has an importance in relation to security threats found on Windows platform. The SANS/FBI have pinpointed these threats included with a report on the top list.
Experienced administrators have opportunity of viewing the list or report in order to check up mistakes and add fixes to the vulnerabilities. The report offers valuable details about the problems and how to deal with them.
Here are some of the most exploited Windows vulnerabilities detailed on the list:
- W1 Internet Information Services (IIS)
- W2 Microsoft Data Access Components (MDAC) – Remote Data Services
- W3 Microsoft SQL Server
- W4 NETBIOS – Unprotected Windows Networking Shares
- W5 Anonymous Login – Null Sessions
- W6 LAN Manager Authentication – Weak LM Hashing
- W7 General Windows Authentication – Accounts with No Passwords or Weak Passwords
- W8 Internet Explorer
- W9 Remote Registry Access
- W10 Windows Scripting Host
There are more detailed descriptions on each of the vulnerabilities added above included with a fix or upgrade solving them problem.
Article available on the following link, look into the vulnerability descriptions.