Search /
Docfinder:

RESEARCH CENTERS

Applications
Careers
Convergence
Data Center
LANs
Net/Systems Mgmt.
NOSes
Outsourcing
Routers/Switches
Security
Service Providers
Small/Med.Business
Storage
WAN Services
Web/e-commerce
Wireless/Mobile

SITE RESOURCES

Daily News
Newsletters
This Week in NW
Tests/Reviews
Buyer's Guides
Opinion
Forums
Special Issues
How to/Primers
Case Studies
Network Life
Encyclopedia
IT Briefings

TODAY'S NEWS

•	Valentine's Day Patch Tuesday: Microsoft to issue 9 patches, 4 critical
•	Mobile World Congress sneak peek: Quad-core smartphones, Ice Cream Sandwich & more
•	Microsoft details 'Windows on ARM' program
•	March debut of 'iPad 3' a sure bet, says analyst
•
•	FBI unbolts Steve Jobs 1991 investigation file
•	Cisco boosted profit, sales in Q2 while cutting costs
•	Macs take on the enterprise
•	Four crazy tech ideas from Google's Solve for X project
•	Obama 2012 campaign playlist revealed courtesy of Spotify
•	Oracle buying Taleo for US$1.9 billion in direct hit at SAP
•	Amazon attacks Apple: You get 3 Kindle products for price of iPad 2
•	Pre-rendered pages highlight latest Google Chrome release
•	Microsoft exec: Lync-Skype integration a 'compelling opportunity'
•	The future of hypervisors
•	More breaking news

/

Compendium /

Trivializing Bugtraq

By Adam Gaffin
Network World Fusion 10/25/04

David Piscitello says he is getting more and more annoyed with Bugtraq reports that have absolutely nothing to do with enterprise security - to the point where he's written to some of the bug finders to ask why he should care about the flaw they found:

The exchange I had with one wannabe who posted a report of a buffer overflow in a 2001 version of a PC game on Windows 98SE is indicative of the problem:

Dave: "What practical consequence does this bug have for someone operating a large business network?

Wannabe: "Nothing, this game is not so much diffused and in a "large business network" the people should do their job, not play with games (except if the company is a software house that develops games)."

Dave: "The game's 4 years old, and wasn't a very good one. What's the attack vector for this game? Think of all the conditions that have to fall into place to compromise one home computer. It's too improbable to bother reporting, and the vendor is not going to invest a penny to fix it. So who benefits from the report?"

Back to Compendium

Comments

Post a comment

NWFusion offers more than 40 FREE technology-specific email newsletters in key network technology areas such as NSM, VPNs, Convergence, Security and more.
Click here to sign up!

New Event - WANs: Optimizing Your Network Now.
Hear from the experts about the innovations that are already starting to shake up the WAN world. Free Network World Technology Tour and Expo in Dallas, San Francisco, Washington DC, and New York.
Attend FREE

Your FREE Network World subscription will also include breaking news and information on wireless, storage, infrastructure, carriers and SPs, enterprise applications, videoconferencing, plus product reviews, technology insiders, management surveys and technology updates - GET IT NOW.