This is more indicative of CERT's focus than the relative frequency of security issues. The fact that a large fraction of e-commerce merchants let you set the price for the goods you buy is in practice a larger threat than the widely publicized buffer overflows.
Semantic security bugs in individual web sites do not rate highly enough on Cert's seismograph, but are in practice far more common. > My evidence: http://www.cert.org/advisories/ > -- Viktor. --------------------------------------------------------------------- The Cryptography Mailing List Unsubscribe by sending "unsubscribe cryptography" to [EMAIL PROTECTED]