Usually like 10 - 20 percent of all published web vulnerabilities are wrong/incorrect. This is not an "official" number, but this estimation is based on my personal experience.
Unfortunately sometimes vulnerability researchers don't understand the full extend of a possible vulnerability and therefore submit incorrect information to the security websites.
if you want to do quick checks in order to confirm a vulnerability, I recommend to have a look at Secunia secunia.com/advisories/search/?… or Exploit-DB. When one of the confirms a vulnerability, it usually is correct.
All Comments
@Todd: Official feature request: I want to edit my comments and correct the typos :P
@eidelweiss:
Usually like 10 - 20 percent of all published web vulnerabilities are wrong/incorrect. This is not an "official" number, but this estimation is based on my personal experience.
Unfortunately sometimes vulnerability researchers don't understand the full extend of a possible vulnerability and therefore submit incorrect information to the security websites.
if you want to do quick checks in order to confirm a vulnerability, I recommend to have a look at Secunia
secunia.com/advisories/search/?…
or Exploit-DB. When one of the confirms a vulnerability, it usually is correct.
Hope this helps.