SANS Top 20

The SANS Top 20 is a consensus list of vulnerabilities that require immediate remediation. The 2005 list covers vulnerabilities in Windows and Unix-based operating systems as well as in back-up and anti-virus applications and some core Internet components (such as switches and routers).

CCIRC has participated in a joint announcement of the list with the SANS Institute and the governments of the United States and the United Kingdom. CCIRC has released alerts and advisories related to a number of the vulnerabilities highlighted in the Top 20 lists.