Open Source Platforms Arrive On IBM's Most Vulnerable List

IBM Internet Security Systems is out with its X-Force 2008 Mid-Year Trend Statistics report. This is an extremely exhaustive look at security vulnerabilities in both proprietary and open source software. It highlights trends in malware and phishing, and ranks vendors, open source projects, and even languages by security breach disclosures. With the rise of open source software, including much more adoption in enterprises, it's no surprise to see some open source platforms arrive on the top ten most vulnerable list, including one in second place, sandwiched between Apple and Microsoft. Which open source projects qualified--for the first time?

The IBM study used a new standard to classify vulnerabilities by vendor and project this year: CPE, or Common Platform Enumeration.