[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
Message-ID: <45BE4F2D.7060506@securenetwork.it>
Date: Mon, 29 Jan 2007 20:46:53 +0100
From: Stefano Zanero <s.zanero@...urenetwork.it>
To: Gadi Evron <ge@...uxbox.org>
Cc: trzindan@...mail.fr, bugtraq@...urityfocus.com
Subject: Re: local Calendar System v1.1 (lcStdLib.inc) Remote File Include
Gadi Evron wrote:
> How can we all automate the testing process for fake vulns in and list
> them as such without overburdening OSVDB, CVE, Milworm and SecuriTeam?
I suggest to ask for a pointer to the single source file where the
vulnerability exists, a pointer to the archive of the correct version of
the application, and a clear description of the vuln, or otherwise
reject the posting altogether.
This would at least add a filter... and make our life easier when
cross-checking.
Stefano
Powered by blists - more mailing lists