Dear @ncircletweets, if you rant about CVSS, don't score your 2nd example incorrectly to make your case. http://bit.ly/XPtQr1
-
-
Replying to @attritionorg
@attritionorg@ncircletweets Scores are from NVD (for an example see CVE-2010-2863). I can provide other examples if you like.1 reply 0 retweets 0 likes -
Replying to @treguly
@treguly@ncircletweets NVD uses junior BAH consultants to score, not so reliable. context-dep code exec is not 10.0 (AC=M not L)1 reply 0 retweets 0 likes -
Replying to @attritionorg
@attritionorg@ncircletweets Even then, CVSS is still highly flawed. A great example: user interaction vulns are labelled as remotes.2 replies 0 retweets 0 likes
Replying to @treguly
@treguly @ncircletweets Not arguing that, preaching to the choir: http://bit.ly/1358nP8
11:05 AM - 18 Mar 2013
0 replies
0 retweets
0 likes
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.