- TalkBack 8 of 34:
- Next »
- « Previous
- Thread View
- Flat View
- No, I didn't
-
First off, show me the exploits, show me the exploits, SHOW ME THE EXPLOITS for the embedded web font and the quicktime vulnerabilities. If you can't, then you simply cannot hold the belief that the list is only for vulnerabilities that have exploits. Seriously, can you see a flaw in my logic?
Second, let me make the following statement:
The jar in front of you contains jelly beans, gum balls, and licorice.
This is a statement that is similar in form to:
Technical Cyber Security Alerts provide timely information about current security issues, vulnerabilities, and exploits.
Question: Is every piece of candy in the jar a licorice?
Answer: No, some will be jelly beans and gumballs.
Similarly, the list you showed us will have security issues, vulnerabilities, and a few exploits, depending on what the alert is about. Again, I repeat my first question: show me the exploits!!!
Face it, you can't. The list simply shows security alerts: things that the people at CERT believe to be important to mention, probably because the alert contains something that could affect many people (although I'm only guessing, as would you, about the criteria they use). Chances are good that any Linux vulnerability that affects only home type uses of Linux (like libpng vulnerabilities) are probably not going to make the security alert list whereas anything remotely related to Windows probably will. In face, I'll hazard a guess that the only reason the Quicktime vulnerability made it to the security alert list is because it affects Windows. Had it not affected Windows, I wonder if that fact alone would have kept it off the list. But I'm only guessing on that last bit. It won't hurt my pride at all if you were to prove me wrong.
- Posted by: NonZealot Posted on: 01/11/06 You are currently: a Guest | Members login | Terms of Use
Reply to Story
No further replies to this post will be accepted.
What do you think?
SponsoredWhite Papers, Webcasts, and Downloads
- Why Isn't Server Virtualization Saving Us More? A Few Small Changes May Dramatically Increase Your Efficiency VMware Companies have rapidly adopted server virtualization over the past few ... Download Now
- Five Steps to Determine When to Virtualize YourServers VMware Server virtualization isn't just for big companies. Entry-level ... Download Now
- Three Steps You Need to Know to Stop Data Loss Varonis Sensitive data exposed to misuse or loss... it is the stuff of nightmares ... Download Now
Premier Vendor Content Whitepapers, webcasts & resources from our Power Center Sponsors
- New Online Dashboard for IT Leaders
-
Read about top issues IT decision-makers face every day, plus get cost-effective solutions to real-life IT problems.
- Learn more >>
- Microsoft Dynamics CRM Online - Free Six-Month Trial for Eligible Organizations
-
Microsoft Dynamics CRM Online provides fast online access, simple contact management and better sales performance for a low monthly cost - the best value on the market today.
- Learn more about the free, six-month trial offer >>
- Keep Up With The Latest In Document Management with The DocuMentor.
-
Doc delivers the scoop on today's enterprise content management, printer maintenance, and all other issues related to document management. It's the DocuMentor Blog.
- Learn more >>
- The best support in the Linux business
-
If Linux is going to power your mission-critical applications, you'd better have the best support known to business. Novell was rated the top provider of Linux technical support.
- Learn more >>
IT Solutions for 2010
- Get cost-effective strategies and roadmaps on the most important issues facing IT leaders in 2010! Learn how to easily cut costs and deliver greater efficiency starting with your database, IT compliance management and data center. Visit the IT Leaders Dashboard. Visit the IT Leaders Dashboard.
-
- Read about top issues IT decision-makers face every day, plus get cost effective solutions to real life IT problems. Oracle Topline
-
