How serious is that security flaw?
Leading IT companies including Cisco Systems, Microsoft, and Symantec are promoting a rating system that will standardize the measurement of the severity of software vulnerabilities.
A plan for the new system, called the Common Vulnerability Scoring System (CVSS), was unveiled at last week's RSA Conference in San Francisco. If widely adopted, the new system will provide a common language for describing the seriousness of computer security vulnerabilities and replace different, vendor-specific rating systems, according to a presentation on the system by Mike Schiffman, a researcher at Cisco.
By Paul Roberts at PC World.
[ Read more ]