(2009-08-12) The Microsoft Exploitability index

Microsoft Exploitability Index
As all of you know, Microsoft rates their vulnerabilities on a scale ranging from low to critical. They call this the "Maximum Severity Rating". But it's far less common knowledge that they also have an "Exploitability Index" rating on every bulletin.

An example:
"MS09-036
Vulnerability in ASP.NET in Microsoft Windows Could Allow Denial of Service (970957)
CVE-2009-1536
3 - Functioning exploit code unlikely
A denial-of-service tool is likely. However, functioning exploit code for remote code execution is unlikely."

The Exploitability index for this vulnerability is 3, which is the lowest rating.

* A rating of 3 means the exploit code is unlikely work. It may cause an effect, but it will probably not work well enough to allow for something like remote code execution.
* A rating of 2 means that the exploit code work but will not be successful often enough to be considered stable.
* A rating of 1 means that the exploit code will work repeatedly.

Security features like Data Execution Prevention (DEP), Stack protection and Address space layout randomization (ASLR) will work together to make successful exploitation less likely to happen.

Official information about the "Microsoft Exploitability index":
http://technet.microsoft.com/en-us/security/cc998259.aspx


Tags: Microsoft Security, Exploits
Posted: 2010-06-17 by Erik Zalitis
Changed: 2010-06-17 by Erik Zalitis

News archive