Re: Old vulnerabilities...

From: Renaud Deraison (deraisonat_private)
Date: Mon Mar 03 2003 - 16:10:50 PST

  • Next message: Michael Katz: "Re: Old vulnerabilities..."

    On Tue, Mar 04, 2003 at 12:57:07AM +0100, Michel Arboi wrote:
    > Some time ago, I was digging into CVE and I wondered if we shouldn't
    > test very old vulnerabilities (because we do not. Not *all* of them)
    > Two reasons for yes:
    > 1. An archeocomputer may have been lost in a corner of a network.
    > 2. People never learn, and old bugs tend to pop up sooner or later
    
    I spent a great part of the week-end doing this for MS advisories.
    
    I think that there are a couple of more recent & important issues that
    are not tested yet which should test for. MS-wise, we still need :
    
    MS02-036
    MS02-035
    MS02-033
    MS02-031
    MS02-025
    MS02-020
    MS02-021
    MS02-013 
    MS02-001
    
    
    				-- Renaud
    



    This archive was generated by hypermail 2b30 : Mon Mar 03 2003 - 16:10:44 PST