Oracle Java products are most vulnerable products among top ten products, with cyber criminals exploiting two most frequently used vulnerabilities in Oracle Java products, which are found on 35% and 21.7% of affected computers respectively, according to Kaspersky Lab.
The top ten products with vulnerabilities included five Adobe products, two Apple products – QuickTime player and iTunes and Nullsoft Winamp media player.
Kaspersky Lab however found that Microsoft no longer features among the top 10 products with vulnerabilities with the introduction of automatic updates mechanism in its recent versions of the Windows OS.
During a study of IT-threat landscape through the third quarter of 2012, Kaspersky Lab found that an average of eight different vulnerabilities was detected on each vulnerable computer.
During the quarter most significant incidents of malware attack were related Madi, Gauss and Flame.
Kaspersky Lab found that Madi malware attack to penetrate computer systems continued for almost a year and targeted the infrastructure of engineering firms, government organisations, banks and universities in the Middle East.
Gauss is a nation-state sponsored "banking" Trojan which is basically targets to steal a variety of information about online banking systems of infected PC users in the Middle East, Kaspersky added.
Russia based anti-virus developer said Gauss is based on the Flame platform and shares some features with Flame, such as routines for infecting USB drives.
Cyber threat geography also saw changes during the quarter with Russia becoming the leading country hosting malicious content which was followed by US.
During second quarter, former Soviet Union, Africa and South-East Asia countries were the riskiest region to get infected with computer virus while two South European countries: Italy (36.5%) and Spain (37.4%) have been added to the list during the third quarter.
Russia was replaced by Tajikistan as the most dangerous place to use Internet with 61.1% of users in the Central Asian country facing virus attack when online.