A new hacker project that promises to disclose one operating system kernel vulnerability daily hasn't yet come up with any serious bugs, a security company said yesterday, but Gartner warned enterprises that the plan constitutes a security wake-up call.

Last week, security researcher HD Moore, co-creator of the Metasploit Framework penetration testing tool, began posting one kernel bug each day. In July, Moore ran a similar crusade, dubbed "Month of Browser Bugs" that released more than a score of new browser vulnerabilities, including some for Internet Explorer that were later patched by Microsoft. According to Symantec, Moore's "Month of Kernel Bugs" has not yet put forward any major flaws.

"Cursory analysis of these issues leads [us] to believe that the immediate threat posed by the issues disclosed so far is not high," Symantec wrote in an alert to customers of its DeepSight threat network.

HackInTheBox