Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Zero-day sales not "fair" -- to researchers
Robert Lemos, SecurityFocus 2007-06-01

Two years ago, Charles Miller found a remotely exploitable flaw in a common component of the Linux operating system, and as many enterprising vulnerability researchers are doing today, he decided to sell the information.

Comments Mode:
Zero-day sales not "fair" -- to researchers 2007-06-02
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-03
Anonymous (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-11-01
Mr. Clean
Zero-day sales not "fair" -- to researchers 2007-06-03
Anonymous (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-06-05
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-03
RU_Trustified
Zero-day sales not "fair" -- to researchers 2007-06-04
KF (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-06-05
Anonymous
Cry me a river Mr Miller 2007-06-04
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-04
Anonymous42
Zero-day sales not "fair" -- to researchers 2007-06-04
GDFuego
Zero-day sales not "fair" -- to researchers 2007-06-05
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-06
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-07
Chris (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2007-06-13
Anonymous
Zero-day sales not "fair" -- to researchers 2007-06-13
Anonymous (1 replies)
Re: Zero-day sales not "fair" -- to researchers 2009-03-19
Anonymous
I agree with the above. However, Microsoft clearly does not care much about the security of their product. How many stories have you heard about researchers letting them know - for FREE - that they have a flaw, and it goes unpatched for months on months? It even happens in this article!

Researcher's deserve to be paid for their work one way or another, and if the companies producing these products don't care to pay for this sort of information then I guess their users will just keep on suffering...I'm sure MS is well aware that their users will never catch on.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11468/35348#35348




 

Privacy Statement
Copyright 2009, SecurityFocus