Create an Account
username: password:
 
  MemeStreams Logo

Vuln Disclosure? WTF?

search

Acidus
Picture of Acidus
My Blog
My Profile
My Audience
My Sources
Send Me a Message

sponsored links

Acidus's topics
Arts
Business
Games
Health and Wellness
Home and Garden
Miscellaneous
Current Events
Recreation
Local Information
Science
Society
Sports
Technology

support us

Get MemeStreams Stuff!


 
Vuln Disclosure? WTF?
Topic: Technology 10:41 am EST, Jan  8, 2007

-- Disclosure Timeline:
2006.02.27 - Pre-existing digital Vaccine released to TippingPoint
customers
2006.08.31 - Vulnerability reported to vendor
2006.12.12 - Coordinated public release of advisory

I noticed this in a vuln report for a remote code execution in JavaScript for IE. Maybe this is a mistake, but it appears that TippingPoint aka 3Com took steps to protect/secure their customers 6 months before even reporting the issue.

Surely this cannot be a standard security practice. Is this what corporate 0-day purchasing has forced?

Vuln Disclosure? WTF?



 
 
Powered By Industrial Memetics
RSS2.0