Microsoft has just added a new index to new security bulletins to provide additional information about the potential exploitability of vulnerabilities associated with a Microsoft security update.
The index classify each vulnerability with the Exploitability Index Assessment that indicate the likelihood of functioning exploit code, the three possible values are:
- - 1 Consistent exploit code likely
- - 2 Inconsistent exploit code likely
- - 3 Functioning exploit code unlikely
You can find real examples in the new Microsoft Security Bulletin Summary for October 2008