Month: December 2016

I do not think it means what you think it means… (CVE IDs)

[This was originally published on the OSVDB blog.] Sometime in the past day or so, CVE-2016-10001 was publicly disclosed, and possibly a duplicate. Regardless, CVE-2016-10002 is also now public and legitimate. Tonight, I Tweeted that the presence of those IDs doesn’t mean what many will think it means. I say that based on the past…

December 19, 2016

I do not think it means what you think it means… (CVE IDs)