[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Full-Disclosure] Re: Microsoft Security Update

To: <full-disclosure@xxxxxxxxxxxxxxxx>
Subject: [Full-Disclosure] Re: Microsoft Security Update
From: "Anthony Saffer" <anthonysaffer@xxxxxxxxx>
Date: Fri, 5 Sep 2003 15:15:51 -0700

> It's not something you could directly own the box with, unlike RPC vuln
> that Blaster uses; it merely exposes some trivia, thus the "low" rating.

Yeah, but what if that "trivia" is your credit card information or your SSN
or some other important piece of data? I personally think this should have a
higher rating and IMHO think MS knows it too but is going to downplay it due
to it's severity.

Anthony

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html

Prev by Date: [Full-Disclosure] OFF-TOPIC: Petition for a Software Patent Free Europe
Next by Date: RE: [Full-Disclosure] Anybody know what Sobig.F has downloaded?
Previous by thread: [Full-Disclosure] OFF-TOPIC: Petition for a Software Patent Free Europe
Next by thread: [Full-Disclosure] BAD NEWS: Microsoft Security Bulletin MS03-032
Index(es):
- Date
- Thread