[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: Bug severity for substantial DoS vulnerability

Florian Weimer wrote:
> What's the correct severity for substantial DoS vulnerabilities?

I'd gauge it a little based on how popular the software is in the
vulnerable configuration (which is something of a crapshoot).  Sounds
like you're talking about remotely exploitable as well, which I guess
earns it a bonus point.

Jamie Heilman                   http://audible.transient.net/~jamie/
"You came all this way, without saying squat, and now you're trying
 to tell me a '56 Chevy can beat a '47 Buick in a dead quarter mile?
 I liked you better when you weren't saying squat kid."	-Buddy

Reply to: