[ISN] CVE dictionary contains more than 2,000 entries

From: InfoSec News (isnat_private)
Date: Tue Apr 02 2002 - 00:09:44 PST

  • Next message: InfoSec News: "[ISN] DISA seeks detection system"

    http://www.gcn.com/vol1_no1/security/18320-1.html
    
    By William Jackson 
    GCN Staff
    04/01/02 
    
    The Common Vulnerabilities and Exposures lexicon, developed by Mitre
    Corp. of Bedford, Mass., to bring order to IT security, has grown to
    include more than 2,000 entries.
    
    The lexicon, found at cve.mitre.org, standardizes names and
    descriptions of known information security problems, making it easier
    for organizations to share data and for security tools to
    interoperate. Development began three years ago when there was no
    common way to identify or define the security exposures known at that
    time.
    
    "When we started in 1999, there were 321 entries on the list. Now
    there are 2,032, plus an additional 1,994 candidates being reviewed,"  
    CVE project leader Margie Zuk said.
    
    Nearly 50 commercial, academic and government organizations, including
    the National Institute of Standards and Technology, have adopted the
    CVE, and 75 vendors of network security products and services have
    announced that they will conform to the lexicon.
    
    The list of top 20 Internet security vulnerabilities published by the
    FBI and SANS Institute also follows the CVE lexicon.
    
    
    
    -
    ISN is currently hosted by Attrition.org
    
    To unsubscribe email majordomoat_private with 'unsubscribe isn' in the BODY
    of the mail.
    



    This archive was generated by hypermail 2b30 : Tue Apr 02 2002 - 03:16:08 PST