|
|
Why Exploitability is Key to Risk
Commentary: Even if it's not perfect, there's a lot to like about Microsoft's Exploitability Index.
Share this Article  Digg
 Del.icio.us
 Newsvine
 Facebook
 Google
 LinkedIn
 MySpace
 Redit
 Slashdot
 StumbleUpon
 Technorati
 Twitter
 Windows Live
 YahooBuzz
 FriendFeed
Page 2 of 2 Mozilla foregoes the exploitability route Earlier this year I asked Mozilla's chief security person, Window Snyder, if Mozilla would go the Exploitability Index route for reporting vulnerabilities. Snyder told me that Mozilla did consider it but ultimately determined that it was a factor that wasn't all that useful. "We don't have a lot of evidence that Firefox users are being exploited," Snyder said. Though Mozilla may feel confident that its users aren't being exploited, other vendors (Microsoft in particular) shouldn't be. The simple fact is that users and Web sites are being exploited on a daily basis from myriad vulnerabilities. If vendors of all stripes could adopt an exploitability approach that clearly outlines risk based on whether or not an issue could be exploited – I think that the Web itself would be a safer place.
Sean Michael Kerner is a senior editor for InternetNews.com. His areas of coverage includes Linux, Open Source, Security, Application Development and Networking. TAGS: security,Firefox,Microsoft,Internet Explorer,exploitability index
Share this Article Digg
Del.icio.us
Newsvine
Facebook
Google
LinkedIn
MySpace
Redit
Slashdot
StumbleUpon
Technorati
Twitter
Windows Live
YahooBuzz
FriendFeed
Commentary Solutions
Channel News| Contact Sean Michael Kerner | Back to top |
Solutions in a Small World (Latin America): Sealed with a Kiss Even in today’s Internet-dominated world, in-person business connections still make strong impressions. But face-to-face marketers must be aware of cultural disconnects, explains AMD’s Gerald Youngblood.
|
More stories by this author
Comment and Contribute
