Home page logo

bugtraq logo Bugtraq mailing list archives

RE: RE: MySQL command-line client HTML injection vulnerability
From: "Quark IT - Hilton Travis" <Hilton () QuarkIT com au>
Date: Sat, 4 Oct 2008 15:47:13 +1000


So, should we bring up all patches that have been released 5 months ago
or thereabouts?  There's been a LOT of serious vulnerabilities released
since then - if you're 5 months behind in patching, then there's more
serious questions than this one patch.

We ALL need to keep up to date with patches.  5 month old patches are
ancient news and should have been taken care of no more than about 4
months ago at the most.  If this list were to make mention of all old
patches after 5 months or so, the list would be flooded with nigh on
useless information taking the bandwidth as compared to new, relevant
patch and vulnerability. information.




Hilton Travis                       Phone: +61 (0)7 3105 9101
(Brisbane, Australia)               Phone: +61 (0)419 792 394
Manager, Quark IT                   http://www.quarkit.com.au
         Quark Group                http://www.quarkgroup.com.au

     Microsoft SBSC PAL (Australia) http://www.sbscpal.com/

War doesn't determine who is right.  War determines who is left.

This document and any attachments are for the intended recipient 
  only.  It may contain confidential, privileged or copyright 
     material which must not be disclosed or distributed.

                    Quark Group Pty. Ltd.
      T/A Quark Automation, Quark AudioVisual, Quark IT

-----Original Message-----
From: mrry.dmlo () gmail com [mailto:mrry.dmlo () gmail com]
Sent: Friday, 3 October 2008 4:54 PM

what about the people who do not know about the bug or the patch? Mr.
Travis Hilton so it shouldnt be brought to my attention? it is a very
serious bug does one ever go to the root of any problems?

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]