Search giant Google cried foul after an IBM X-Force report labeled it the vendor with the highest percentage of unpatched, critical security holes, prompting a correction by IBM. IBM said the mistake was the result of inaccurate information aggregated from other sources, including vendor advisory pages. IBM and Google agree that the mix-up highlights problems with the way that vulnerability data is collected. With thousands of new holes reported each quarter, there is still no consistent format or guidelines to describe security holes and their severity, spotting independent verification of holes.
Source: https://threatpost.com/google-complains-and-ibm-revises-vulnerability-stats-083110/74402/

