Vulnerability Development mailing list archives
Re: Exploit Ease Level
From: joel.foner () FONERASSOC COM (Joel A. Foner)
Date: Mon, 1 May 2000 12:06:00 -0400
And for the others such a rating is confusing because it still doesn't tell anything about whether this is really a "ready-for-script-kid" exploit.In fact, I just might draft up a proposal... and see that the `scene` think about it.
While the idea sounds good in the abstract, I would be concerned about the volatility of any such rating. Most complex hacks can be scripted, or made _much_ easier with a tool. The minute such a tool appears, a 10+ hack might be converted into a "1" or "2" complexity level... Just a thought, Joel
Current thread:
- Re: Exploit Ease Level Joel A. Foner (May 01)
- <Possible follow-ups>
- Re: Exploit Ease Level Eric Augustus (May 05)