Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Vista
Zero-day sales not "fair" -- to researchers
Robert Lemos, SecurityFocus 2007-06-01

Two years ago, Charles Miller found a remotely exploitable flaw in a common component of the Linux operating system, and as many enterprising vulnerability researchers are doing today, he decided to sell the information.

Comments Mode:
Zero-day sales not "fair" -- to researchers 2007-06-02
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-03
Anonymous (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-11-01
Mr. Clean
Well, fortunately for us, theres people out there who are kind enough to release them. Also, the vulnerability he found was an extremely big vulnerability. It was in linux, an OS that the government uses on some of their servers! For instance, your not going to get $50,000 for a php-nuke SQL Injection vulnerability. But, if someone wants it bad enough you may get $1,000 for it at the most.

- Mr. Clean

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11468/34886#34886
Zero-day sales not "fair" -- to researchers 2007-06-03
Anonymous (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-06-05
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-03
RU_Trustified
Zero-day sales not "fair" -- to researchers 2007-06-04
KF (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-06-05
Anonymous
Cry me a river Mr Miller 2007-06-04
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-04
Anonymous42
Zero-day sales not "fair" -- to researchers 2007-06-04
GDFuego
Zero-day sales not "fair" -- to researchers 2007-06-05
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-06
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-07
Chris (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-06-13
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-13
Anonymous







 

Privacy Statement
Copyright 2007, SecurityFocus