Web Application Security — How to Minimise Prevalent Risk of Attacks

Web Application Security — How to Minimise Prevalent Risk of Attacks

02:11, November 3 2010

By Qualys

The guide surveys typical web application vulnerabilities, compares options for detection, and introduces the QualysGuard Web Application Scanning solution - a new on demand service from Qualys that automates detection of the most prevalent vulnerabilities in custom web applications.

Vulnerabilities in web applications are now the largest vector of enterprise security attacks. Last year, almost 55% of vulnerability disclosures affected web applications.

At year end, 74% of web application vulnerabilities had no available patch for remediation, according to that report. Stories about exploits that compromise sensitive data frequently mention culprits such as "cross-site scripting," "SQL injection," and "buffer overflow." Vulnerabilities like these often fall outside the traditional expertise of network security managers. The relative obscurity of web application vulnerabilities thus makes them useful for attacks. As many organisations have discovered, these attacks will evade traditional enterprise network defenses unless you take new precautions. To help you understand how to minimise these risks, Qualys provides this guide as a primer to web application security. The guide surveys typical web application vulnerabilities, compares options for detection, and introduces the QualysGuard Web Application Scanning solution - a new on demand service from Qualys that automates detection of the most prevalent vulnerabilities in custom web applications.

Download whitepaper

Web Application Security — How to Minimise Prevalent Risk of Attacks
More White Papers