We found significant, deeply-rooted security weaknesses in all three vendors' software.My humble opinion: this is a great opportunity for the open source community to get together with the private sector (hello Fortify) to solve this problem.
The problems we found in the code were far more pervasive, and much more easily exploitable, than I had ever imagined they would be.Deliberate backdoors in these systems, if any existed, would be largely superfluous
Friday, August 3, 2007
Matt Blaze's group reviewed the Sequoia system's code. From his blog: