On Tue, 12 Feb 2008 11:17:55 PST, Owen DeLong said: > If the vulnerability cannot be corrected through a vendor patch, then, > one has to wonder what, exactly the vulnerability is.
Not necessarily - it's unclear they mean "the vuln innately can't be fixed by a mere patch, because it's a social engineering issue", or "the vuln can't be fixed because the vendor has not yet shipped a patch for some reason".
pgps930T6bW5m.pgp
Description: PGP signature
