[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Bastille and Comcast CVE IDs

On 2017-09-29 23:03, Kurt Seifried wrote:

> CVE-2017-9480 is one possible impact (attacker can download config
> file) of CVE-2017-9479 (syseventd running as root listening on some
> local networks).

> If I could plug a cable into your phone and control it with no
> further passwords/etc, that'd be a CVE right?
Avoiding the physical access discussion for the moment (or accepting 
your position), why are these two CVE IDs?



 - Art

Page Last Updated or Reviewed: October 02, 2017