Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

RE: Re: Netscape Bug Bounty

From: S G Masood <sgmasood () yahoo com>
Date: Tue, 7 Oct 2003 09:18:06 -0700 (PDT)

--- Robert Ahnemann <rahnemann () affinity-mortgage com>
wrote:

What was the going rate on a bug?  Did severity
matter? 



$1000. Yes, severity mattered. Only code execution and
data compromise bugs were accepted for this program.
Apart from that, the researcher had to work with them
for resolving the vuln.

--
S.G.Masood




-----Original Message-----
From: KF [mailto:dotslash () snosoft com]
Sent: Monday, October 06, 2003 5:40 PM
To: full-disclosure () lists netsys com
Subject: Re: [Full-disclosure] Re: Netscape Bug

Bounty


Oooooh yeah it was LSD




http://msgs.securepoint.com/cgi-bin/get/bugtraq0211/255.html


that sucks... get stiffed by PitBull and Netscape

both.

-KF


KF wrote:

Didn't they *forget* to pay someone at least

once?

-KF


zen-parse wrote:


Hi,


There used to be a cash reward for researchers

finding

security bugs in Netscape products. Does

anyone know

if they still offer the cash?




According to an email I got this morning, yes

they do.

And a quick google

http://www.google.com/search?q=bug.bounty


gives:

http://wp.netscape.com/security/bugbounty.html

-- zen-parse





_______________________________________________
Full-Disclosure - We believe in it.
Charter:

http://lists.netsys.com/full-disclosure-charter.html

_______________________________________________
Full-Disclosure - We believe in it.
Charter:

http://lists.netsys.com/full-disclosure-charter.html


__________________________________
Do you Yahoo!?
The New Yahoo! Shopping - with improved product search
http://shopping.yahoo.com

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.netsys.com/full-disclosure-charter.html
Previous By Date Next
Previous By Thread Next

Current thread: