Home page logo

isn logo Information Security News mailing list archives

Re: Full Disclosure: How Much Security Info Is Too Much?
From: InfoSec News <isn () c4i org>
Date: Fri, 5 Oct 2001 02:51:22 -0500 (CDT)

Forwarded from: Aj Effin Reznor <aj () reznor com>

"InfoSec News was known to say....."
In fact, Marc Maiffret of eEye says that they were scheduled to
post the announcement a week earlier, but Microsoft contacted him
to ask for more time, saying there was a problem with the patch
and they needed another week to fix it.

EEye complied. Jay Dyson correctly noted that Microsoft publicly
thanked the company for waiting until they had prepared the patch.
On top of that, it's been established that CR II (and possibly CR I)
had a different enough structure to be considered as having NOT been
made possible by the disclosure of eEye's findings.


ISN is currently hosted by Attrition.org

To unsubscribe email majordomo () attrition org with 'unsubscribe isn' in the BODY
of the mail.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]