[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Full-disclosure] How to Report a Security Vulnerability toMicrosoft
- To: "Georgi Guninski" <guninski@xxxxxxxxxxxx>, <full-disclosure@xxxxxxxxxxxxxxxxx>
- Subject: Re: [Full-disclosure] How to Report a Security Vulnerability toMicrosoft
- From: "Morning Wood" <se_cur_ity@xxxxxxxxxxx>
- Date: Fri, 8 Apr 2005 14:16:06 -0700
> On Fri, Apr 08, 2005 at 12:21:05PM -0700, Microsoft Security Response
Center wrote:
> > If you believe you have found a security vulnerability affecting a
> > Microsoft product, we would like to work with you to investigate it.
> >
>
> hahahahahaha
>
> m$ doing social engineering on fd, this is a joke.
this is basicly the same response I had from my OWA advisory ...
>VI. VENDOR RESPONSE
>
>Microsoft has reviewed the issue and has made the determination that
>while a bug fix may be implemented in a future service pack, a security
>advisory/patch will not be released for this issue
therefore, in the interest of everones security, iDefense released the
advisory ( as did I ) without a patch being released first.
it is quite possible they ( Microsoft ) are trying to make out like they
were'nt contacted before said advisory was released.... but that is just my
opinion on observation.
my 2 bits,
Donnie Werner
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/