Re: How to Report a Security Vulnerability to Microsoft

["class101 () hat-squad com" <class101 () gmail com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
 
Who has access to error report data

Microsoft employees, contractors and vendors who have a business need
to use the error report data are provided access. If the error report
indicates that a third-party product is involved, Microsoft may send
the data to the vendor of that product, who may in turn send the data
to sub-vendors and partners.

http://oca.microsoft.com/en/dcp20.asp

Tatercrispies a écrit :

> What do you want confirmation about? It's not a big secret when the
> big-assed dialog box pops up and asks if you'd like to submit
> crash data to Microsoft's servers. (sorry, M$'$ $ervers)
>
> https://winqual.microsoft.com/help/wer_help/dev.aspx
>
>
> On 4/28/05, Georgi Guninski <guninski () guninski com> wrote:
>
> > i would like m$ to officially confirm they are collecting crashes
> > and confidential information from third parties warez.
> >
> > because i am sure my humble application c:\fsckb11.EXE does not
> > send crash reports to m$ in the cases when it crashes.
> _______________________________________________ Full-Disclosure -
> We believe in it. Charter:
> http://lists.grok.org.uk/full-disclosure-charter.html Hosted and
> sponsored by Secunia - http://secunia.com/
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (MingW32)
 
iD8DBQFCcVVdpcZuLdmlFMsRAtDtAJwNK6aHB+Z6yLW7KguIsqww4ruHEQCfXydW
vL9A8T8caRcNgdpihE7Kg8k=
=Vmjj
-----END PGP SIGNATURE-----

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/