Has anyone started a list of embedded devices vulnerable to #heartbleed and wether they can or cannot be patched yet?
-
-
-
Replying to @attritionorg
@attritionorg@spacerog@iamthecavalry There has been a remote code execution flaw in pretty much OpenSSL once per year.1 reply 0 retweets 0 likes -
Replying to @StephenBattista
@StephenBattista@spacerog@iamthecavalry I would disagree with that.1 reply 0 retweets 0 likes -
Replying to @attritionorg
@attritionorg@StephenBattista@spacerog do you track which OSVDB flaws were “OpenSource” and/or “Embedded” ?2 replies 0 retweets 0 likes -
Replying to @iamthecavalry
@iamthecavalry@StephenBattista@spacerog product metadata is coming. but i suggested YOU start a list, not us.3 replies 0 retweets 1 like -
Replying to @attritionorg
@attritionorg@iamthecavalry@spacerog You are right. Quick CVE look-up shows not once a year, still not stellar with 7 in the last decade.2 replies 0 retweets 0 likes
@StephenBattista @iamthecavalry @spacerog don't appear relevant to the RCE debate, but remember CVE missing 3 OpenSSL from last few years.
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.