Full Disclosure mailing list archives

Previous By Date Next
Previous By Thread Next

Re: MSIE (mshtml.dll) OBJECT tag vulnerability

From: Michal Zalewski <lcamtuf () dione ids pl>
Date: Wed, 26 Apr 2006 22:54:08 +0200 (CEST)
On Wed, 26 Apr 2006, Tim Bilbro wrote:


If you think you are helping, you are wrong.


Dear Tim Bilbro CISSP MCSE,

Your blog seems to suggest that you are also quite severely mistaken in
regard to my identity.

  "Secunia did not notify Microsoft ahead of time in order to allow for
  them to patch it before it became public. [...] Microsoft chided
  Zalewski [from Secunia] for jumping the gun and posting his findings
  before a comprehensive patch could be created, but the researcher is
  unapologetic."

But that's for you to figure out what's wrong in that picture.

/mz


_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
Previous By Date Next
Previous By Thread Next

Current thread: