fsebugoutzone.org:9999

       Post AR5arApSeUW5WSSw40 by zhuowei@notnow.dev
 (DIR) More posts by zhuowei@notnow.dev
 (DIR) Post #AR4dpwSOhshBMap2O0 by zhuowei@notnow.dev
       2022-12-28T18:34:42.199219Z
       
       2 likes, 0 repeats
       
       A climate-controlled vault at the United States National Institute of Standards and Technology (NIST) holds the reference critical security bug for calibrating the CVE severity 10.0 score
       
 (DIR) Post #AR4ld4u4n6yjQc96Bc by zhuowei@notnow.dev
       2022-12-28T20:02:00.802633Z
       
       2 likes, 2 repeats
       
       CVE-1999-0002, the reference 10.0 severity bug, is stored in a a triple-locked vault at the National Institute of Standards and Technology, Gaithersburg, Maryland.https://needforshell-site.glitch.me
       
 (DIR) Post #AR4muMUWkjXiqy06sK by thomasfuchs@hachyderm.io
       2022-12-28T20:04:51Z
       
       1 likes, 0 repeats
       
       @zhuowei What many don’t know that it’s a copy of the ur-bug, which was created in Paris in the wake of the French Revolution.
       
 (DIR) Post #AR4oEMfdtbG39gIm2K by Rairii@haqueers.com
       2022-12-28T20:22:28Z
       
       1 likes, 0 repeats
       
       @zhuowei isn&#39;t the reference 10.0 severity bug actually CVE-2000-0884, ye olde IIS unicode U+C0AF RCE? ;)
       
 (DIR) Post #AR4ofWv7taFMlMUuy8 by FritzAdalis@infosec.exchange
       2022-12-28T20:33:36Z
       
       1 likes, 0 repeats
       
       @zhuoweiShouldn&#39;t they also have a CVSS 0.0 bug for reference?
       
 (DIR) Post #AR4sPOdpJCNOGky5tQ by karl@infosec.exchange
       2022-12-28T21:10:32Z
       
       0 likes, 0 repeats
       
       @zhuowei I had no idea! NIST is truly an impressive organization.(jokes aside, NIST really is an amazing org)
       
 (DIR) Post #AR4sPP8JTqlLnJERPc by zhuowei@notnow.dev
       2022-12-28T21:17:58.081212Z
       
       0 likes, 0 repeats
       
       @karl National Institute Space Telescope
       
 (DIR) Post #AR4viwe9Oyth6D8Ii0 by jwz@mastodon.social
       2022-12-28T21:51:33Z
       
       1 likes, 1 repeats
       
       @zhuowei Relatedly, I believe the platinum-iridium reference CONS cell is still stored in Paris. https://jwz.org/b/yiSc
       
 (DIR) Post #AR4yTTe3FM6qffP0xE by andrea@tryste.ro
       2022-12-28T22:24:25Z
       
       1 likes, 0 repeats
       
       @zhuowei Right next to the ISO Standard Morris Worm
       
 (DIR) Post #AR5QCvmw9edXkXSPQW by georgewherbert@sfba.social
       2022-12-29T02:57:39Z
       
       1 likes, 0 repeats
       
       @zhuowei The vault *used* to contain it; the smart climate control system sensors unwittingly crossed the airgap architecture boundaries and the vulnerability is now out in the wild again…
       
 (DIR) Post #AR5arAJCaQiDuPNAmW by gudenau@fosstodon.org
       2022-12-29T05:34:31Z
       
       0 likes, 0 repeats
       
       @zhuowei They have always had awful names? Cool.
       
 (DIR) Post #AR5arApSeUW5WSSw40 by zhuowei@notnow.dev
       2022-12-29T05:36:01.166084Z
       
       0 likes, 0 repeats
       
       @gudenau OK, the name for CVE-1999-0002 was one I made up... but CVE-1999-0001 did have a proper fancy name: https://twitter.com/TauPan/status/1480428519373033478