It's become a cat and mouse game. I quit hacking after 911 and the patriot act. The latest exploit which will eventialy lead to a fast spreading worm, took me all of 10 minutes to discover the file that was vulnerable and how to exploit it. I'm glad I'm in the "security" industry now. I'm all for a ...
What's wrong with embracing standards already in place like CVSS? And an exploitability index should not be a predictor for malware - just a measurement of whether malware could be exploited - not a be whether it will....
[ more ] [ reply ]