Denial of reality vulnerabilities
Denial of reality vulnerabilities
Posted Jul 13, 2006 20:16 UTC (Thu) by giraffedata (guest, #1954)Parent article: Denial of reality vulnerabilities
This editorial seems to be arguing with somebody, but whom?
I assume the descriptions of the bug as a DOS are just errors. If the author had realized there's a way to exploit it to get privilege escalation, he would have written it up that way. Is someone still claiming the original description is appropriate?
If it's just an editorial against making mistakes, there's not much point -- it's preaching to the converted.
Posted Jul 20, 2006 8:08 UTC (Thu)
by Wol (subscriber, #4433)
[Link]
mjcox said the first announcement on the private security mailing list described it as a privilege escalation problem.
Cheers,
If the author HADN'T realised, then he clearly hadn't read the initial advisories, and shouldn't have been writing the official advisory.Denial of reality vulnerabilities
Wol