On Tue, Mar 04, 2003 at 12:57:07AM +0100, Michel Arboi wrote: > Some time ago, I was digging into CVE and I wondered if we shouldn't > test very old vulnerabilities (because we do not. Not *all* of them) > Two reasons for yes: > 1. An archeocomputer may have been lost in a corner of a network. > 2. People never learn, and old bugs tend to pop up sooner or later I spent a great part of the week-end doing this for MS advisories. I think that there are a couple of more recent & important issues that are not tested yet which should test for. MS-wise, we still need : MS02-036 MS02-035 MS02-033 MS02-031 MS02-025 MS02-020 MS02-021 MS02-013 MS02-001 -- Renaud
This archive was generated by hypermail 2b30 : Mon Mar 03 2003 - 16:10:44 PST