Hi Sergio 'shadown' Alvarez,
>just in case you didn't realize...if you have the exploit to generate
>the signature, you already know what the vulnerability is.
Exploit-based signatures are usually generated by finding the artifacts
in a number of exploit samples. Thus, having exploit-based signature does't
mean that we already know the vulnerability.
cheers,
Yong
