This email newsletter is designed to bring recent news about CVE,
such as new versions, upcoming conferences, new Web site features,
etc. right to your emailbox. Common Vulnerabilities and Exposures
(CVE) is the standard for information security vulnerability
names. CVE content results from the collaborative efforts of the
CVE Editorial Board, which is comprised of leading representatives
from the information security community. Details on subscribing
(and unsubscribing) to the email newsletter are at the end. Please
feel free to pass this newsletter on to interested colleagues.
Comments: cve@mitre.org
-------------------------------------------------------
CVE-Announce e-newsletter/March 18, 2009
-------------------------------------------------------
Contents:
1. Feature Story
2. Hot Topic
3. Also in this Issue
4. Details/Credits + Subscribing and Unsubscribing
FEATURE STORY:
CVE Compatibility Update
Two additional organizations have recently made delcarations of
CVE Compatbility: (1) Beijing Topsec Co., Ltd. declared that its
Topsec Intrusion Protection System (TopIDP) is CVE-Compatible, and
(2) SoftRun, Inc. declared that its vulnerability assessment and
remediation tool, Inciter Vulnerability Manager, is
CVE-Compatible.
For additional information and to review the complete list of all
products and services participating in the compatibility program,
visit the CVE Adoption Program section.
LINKS:
Beijing Topsec Co., Ltd. - http://www.topsec.com.cn
SoftRun, Inc. - http://www.softrun.com
CVE Adoption Program - http://cve.mitre.org/adoption/index.html
---------------------------------------------------------------
HOT TOPIC:
CVE List Surpasses 35,000 CVE Identifiers
The CVE Web site now contains 35,529 unique information security
issues with publicly known names. CVE, which began in 1999 with
just 321 common names on the CVE List, is considered the
international standard for public software vulnerability names.
Information security professionals and product vendors from around
the world use CVE Identifiers (CVE-IDs) as a standard method for
identifying vulnerabilities, and for cross-linking among products,
services, and other repositories that use the identifiers.
Each of the 35,000+ identifiers on the CVE List includes the
following: CVE Identifier number (i.e., "CVE-1999-0067");
indication of "entry" or "candidate" status; brief description of
the security vulnerability; and pertinent references such as
vulnerability reports and advisories or OVAL-ID. Visit the CVE
List page to download the complete list in various formats or to
look-up an individual identifier. Fix information and enhanced
searching of CVE is available from NVD.
LINKS:
CVE List - http://cve.mitre.org/cve
National Vulnerability Database (NVD) - http://nvd.nist.gov
---------------------------------------------------------------
ALSO IN THIS ISSUE:
* MITRE Hosts "Making Security Measurable" Booth at "InfoSec World
2009"
Read these stories and more news at http://cve.mitre.org/news
---------------------------------------------------------------
Details/Credits + Subscribing and Unsubscribing
Managing Editor: David Mann, Information Security Technical
Center. Writer: Bob Roberge. The MITRE Corporation (www.mitre.org)
maintains CVE and provides impartial technical guidance to the CVE
Editorial Board on all matters related to ongoing development of
CVE.
To unsubscribe from the CVE-Announce e-newsletter, open a new
email message and copy the following text to the BODY of the
message "SIGNOFF CVE-Announce-list", then send the message to:
listserv@lists.mitre.org. To subscribe, send an email message to
listserv@lists.mitre.org with the following text in the BODY of
the message: "SUBSCRIBE CVE-Announce-List".
Copyright 2009, The MITRE Corporation. CVE and the CVE logo are
registered trademarks of The MITRE Corporation.
For more information about CVE, visit the CVE Web site at
http://cve.mitre.org or send an email to cve@mitre.org. Learn more
about Making Security Measurable at
http://measurablesecurity.mitre.org.
