Ethical Hacking

Learn to find vulnerabilities before the bad guys do! Gain real world hands on hacking experience in our state of the art hacking lab. Course designed and taught by expert instructors with years of penetration testing experience. 12 student maximum in every class. Certification attempt included in every package.
Computer Forensics Training at InfoSec Institute

Gain the in-demand skills of a certified computer examiner, learn to recover trace data left behind by fraud, theft, and cybercrime perpetrators. Discover the source of computer crime and abuse at your organization so that it never happens again. All of our class sizes are guaranteed to be 12 students or less to facilitate one-on-one interaction with one of our expert instructors.




Network Security FullDisclosure
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability

from [Morning Wood] Network Security [Permanent Link]
Subject: Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability
Date: Wed, 26 Apr 2006 16:34:41 -0700 
Your blog seems to suggest that you are also quite severely mistaken in
regard to my identity.

 "Secunia did not notify Microsoft ahead of time in order to allow for
 them to patch it before it became public. [...] Microsoft chided
 Zalewski [from Secunia] for jumping the gun and posting his findings
 before a comprehensive patch could be created, but the researcher is
 unapologetic."

But that's for you to figure out what's wrong in that picture.

I will take a shot in the dark here... you do not work for Secunia.
and yes... bad blogging is far worse than any 0day, it does nothing but provide
inacurate information, hysteria and FUD.
Tim... next time you decide to try to write a comprehensive blog entry, do some
research first. ( and stop relying on the footer to try to decypher who someone is or not )

Secunia sponsors the FD list, and is not the releasing enity in this case.

DAMN THE BLOGGERS!!!

cheers,
MW

_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/

[More messages with this same subject...]




<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Full-disclosure] What is wrong with schools these days?, Nick Withers
Next by Date:  [Full-disclosure] Interesting but vulnerable scheme for tokenless auth, Glenn Everhart
Previous by Thread:  Re[2]: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability, Thierry Zoller
Next by Thread:  Re: [Full-disclosure] MSIE (mshtml.dll) OBJECT tag vulnerability, Randal T. Rioux
Indexes:  [Date] [Thread] [Top] [All Lists]