[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
RE: Sources: Full and Partial Coverage
- To: cve-editorial-board-list <cve-editorial-board-list@LISTS.MITRE.ORG>
- Subject: RE: Sources: Full and Partial Coverage
- From: security curmudgeon <jericho@attrition.org>
- Date: Tue, 8 May 2012 01:53:06 -0500
- Delivery-Date: Tue May 8 02:55:22 2012
- In-Reply-To: <1A54A32F70AFF245911642771CB08DC504CB9E@exch-sf-01.ad.ncircle.com>
- List-Help: <mailto:LISTSERV@LISTS.MITRE.ORG?body=INFO%20CVE-EDITORIAL-BOARD-LIST>
- List-Owner: <mailto:CVE-EDITORIAL-BOARD-LIST-request@LISTS.MITRE.ORG>
- List-Subscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-subscribe-request@LISTS.MITRE.ORG>
- List-Unsubscribe: <mailto:CVE-EDITORIAL-BOARD-LIST-unsubscribe-request@LISTS.MITRE.ORG>
- References: <2F43C4D2BE8AD24C8AC17D8C64B379B316BE3E@IMCMBX01.MITRE.ORG> <1A54A32F70AFF245911642771CB08DC504CB9E@exch-sf-01.ad.ncircle.com>
- Sender: <owner-cve-editorial-board-list@LISTS.MITRE.ORG>
- User-Agent: Alpine 2.00 (LNX 1167 2008-08-23)
Tim; On Tue, 8 May 2012, Tim Keanini wrote: : My head researcher felt that these were absent and should be considered given the infrastructure roles they play and I agree. : Partially Cover : 1) http://www.exploit-db.com/ <-- if they hit this repository exploit code : is available to the public, and it warrants a CVE. I am curious why you chose EDB, and do not mention or suggest PacketStorm or inj3ct0r (1337day.com), as they both do the same thing, at least one in more volume than EDB. In fact, there is a big cross-over between all three that make daily scouring quite annoying for some VDBs. I only ask out of curiosity, because I could argue EDB over those, or PS over those, for different reasons. : They also scratched their heads with RealPlayer being on the list but that might be something Federal market specific. There is likely other media-based software with a larger user installation base than Real, that is not currently on the list.
- Follow-Ups:
- RE: Sources: Full and Partial Coverage
- From: Tim Keanini <tkeanini@ncircle.com>
- RE: Sources: Full and Partial Coverage
- References:
- Sources: Full and Partial Coverage
- From: "Mann, Dave" <damann@mitre.org>
- RE: Sources: Full and Partial Coverage
- From: Tim Keanini <tkeanini@ncircle.com>
- Sources: Full and Partial Coverage
- Prev by Date: RE: Sources: Full and Partial Coverage
- Next by Date: RE: Sources: Full and Partial Coverage
- Prev by thread: RE: Sources: Full and Partial Coverage
- Next by thread: RE: Sources: Full and Partial Coverage
- Index(es):
