Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: How to Report a Security Vulnerability toMicrosoft

From: "Morning Wood" <se_cur_ity () hotmail com>
Date: Fri, 8 Apr 2005 14:16:06 -0700
On Fri, Apr 08, 2005 at 12:21:05PM -0700, Microsoft Security Response

Center wrote:

If you believe you have found a security vulnerability affecting a
Microsoft product, we would like to work with you to investigate it.



hahahahahaha

m$ doing social engineering on fd, this is a joke.


this is basicly the same response I had from my OWA advisory ...


VI. VENDOR RESPONSE

Microsoft has reviewed the issue and has made the determination that
while a bug fix may be implemented in a future service pack, a security
advisory/patch will not be released for this issue


therefore, in the interest of everones security, iDefense released the
advisory ( as did I ) without a patch being released first.
it is quite possible they ( Microsoft ) are trying to make out like they
were'nt contacted before said advisory was released.... but that is just my
opinion on observation.

my 2 bits,

Donnie Werner




_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: