On GameSpot: Facebook, Twitter, Last.fm on Xbox 11/17
BNET Business Network:
BNET
TechRepublic
ZDNet
TalkBack 6 of 34:
Next »
« Previous
Post-exploit patches? Show me the exploits!
While it is true that the WMF patch was post exploit, I'm not aware of any exploits for the embedded web font nor for the Quicktime vulnerability.

I don't think your definition of that list is correct.
Technical Cyber Security Alerts provide timely information about current security issues, vulnerabilities, and exploits.

While exploits could be listed, that description does not suggest that only exploited vulnerabilities are listed. This list seems more for things that CERT believes could possibly, maybe, someday become serious. Since gaping wide open remote code execution vulnerabilities that affect Linux home users are not likely to become serious (because so few computer naive Linux home users exist), your whole rant about how there were none listed for Linux suddenly becomes much less relevant. To make this list, some person at CERT must believe it is important enough to be listed, not because some exploit already exists. Correct me if I'm wrong though by showing me pre-patch exploits for the web font and the quicktime listings.
Posted by: NonZealot   Posted on: 01/11/06 You are currently: a Guest | Members login | Terms of Use
Reply to Story Reply to Message

Alert moderator to an offensive message

Subscribe to this discussion via Email or RSS

Updates installed!  Grayson Peddie | 01/10/06
Zealot logic dictates that these aren't serious  NonZealot | 01/10/06
better tell CERT that, they think it is critical  ~doolittle~ | 01/10/06
This proves that Windows is more secure!!1!!!one!!1  NonZealot | 01/11/06
CERT cyber security alert is where you don't want your listing  ~doolittle~ | 01/11/06
Post-exploit patches? Show me the exploits!  NonZealot | 01/11/06
you just answered your own question  ~doolittle~ | 01/11/06
No, I didn't  NonZealot | 01/11/06
RE: No, I didn't (inverse proprotions explained)  ~doolittle~ | 01/12/06
Hey Doolittle, only one, very simple question  NonZealot | 01/12/06
RE: Hey... I don't have to show anything - CERT says so  ~doolittle~ | 01/12/06
Look again!  NonZealot | 01/12/06
Flaw Could Allow Hacker To 'Own Every Outlook User In The World In A Week'  ~doolittle~ | 01/12/06
"An exploit exists"  toadlife | 01/13/06
Again  Shelendrea | 01/10/06
Ouch!  toadlife | 01/10/06
All it takes is one user to make a mistake  crocd | 01/10/06
Our users don't have...  toadlife | 01/10/06
need a  Shelendrea | 01/10/06
Why not...  SGT_Spam | 01/10/06
Various reasons  toadlife | 01/10/06
I agree with that  crocd | 01/11/06
Read Proof of concept  voska | 01/11/06
link?  toadlife | 01/11/06
Windows takes the lead in CERT Technical Cyber Security Alerts '06  ~doolittle~ | 01/10/06
This proves that Windows is more secure!!1!!!one!1  NonZealot | 01/11/06
the listing shoud be in the summary - not the high-risk listing  ~doolittle~ | 01/11/06
...nice try, you just keep shooting yourself in the foot (nt)  ~doolittle~ | 01/11/06
Why Windows will never be secure  Chad_z | 01/11/06
And if Linux had 95% of the desktop...  3D0G | 01/11/06
Blasphemy!  toadlife | 01/11/06
FLAME ON!  Shelendrea | 01/11/06
Obscure OS's are good for people like you that don't understand security  toadlife | 01/11/06
Calling "Bytemaster"..  jinko | 01/11/06

What do you think?

SponsoredWhite Papers, Webcasts, and Downloads

advertisement
advertisement

Enterprise Applications

  • Check out some of the easiest and most powerful ways to boost productivity while saving money on your application infrastructure. See ZDNet's comprehensive Enterprise Application resource center, now!
  • New Online Dashboard
  • Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline