12 Feb
2008
12 Feb
'08
3:48 p.m.
On Feb 12, 2008 3:27 PM, <Valdis.Kletnieks@vt.edu> wrote:
Not necessarily - it's unclear they mean "the vuln innately can't be fixed by a mere patch, because it's a social engineering issue", or "the vuln can't be fixed because the vendor has not yet shipped a patch for some reason".
... or the patch application mechanism isn't likely to be successful against sufficiently infected machines. -Jim P.