Security Incidents mailing list archives
Re: AIM Password theft
From: "Meritt James" <meritt_james () bah com>
Date: Thu, 25 Sep 2003 09:13:51 -0400
How about blaming him for not applying a fix for a terrible flaw and then trying avoid the blame by passing it to someone else? This is a widespread problem, in my opinion. Fixes and patches exist but are not applied by "administrators." Jim Valdis.Kletnieks () vt edu wrote:
On Wed, 24 Sep 2003 08:35:32 EDT, Jamie Pratt <jamie () nucdc org> said:Anyone know when this will terrible flaw be fixed by MS?Fixed back on August 20. Can't blame Microsoft for not fixing it. http://www.microsoft.com/technet/security/bulletin/MS03-032.asp ------------------------------------------------------------------------ Part 1.2Type: application/pgp-signature
-- James W. Meritt CISSP, CISA Booz | Allen | Hamilton phone: (410) 684-6566 --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- AIM Password theft Mark Coleman (Sep 23)
- Re: AIM Password theft Lothar Kimmeringer (Sep 23)
- Re: AIM Password theft Jamie Pratt (Sep 24)
- Re: AIM Password theft Valdis . Kletnieks (Sep 24)
- Re: AIM Password theft Meritt James (Sep 25)
- Re: AIM Password theft VU#865940 CERT(R) Coordination Center (Sep 25)
- Re: AIM Password theft Jamie Pratt (Sep 24)
- Re: AIM Password theft Lothar Kimmeringer (Sep 23)
- <Possible follow-ups>
- RE: AIM Password theft Andrew McKnight (Sep 24)
- Re: [incidents] RE: AIM Password theft Tim Kennedy (Sep 24)
- Re: AIM Password theft Rick Updegrove (Sep 24)
- Re: AIM Password theft Meritt James (Sep 25)
- RE: AIM Password theft Bergeron, Jared (Sep 24)