Zero-day sales not "fair" -- to researchers

Zero-day sales not "fair" -- to researchers
Robert Lemos, SecurityFocus 2007-06-01

Two years ago, Charles Miller found a remotely exploitable flaw in a common component of the Linux operating system, and as many enterprising vulnerability researchers are doing today, he decided to sell the information.

Re: Zero-day sales not "fair" -- to researchers 2009-03-19
Anonymous

I agree with the above. However, Microsoft clearly does not care much about the security of their product. How many stories have you heard about researchers letting them know - for FREE - that they have a flaw, and it goes unpatched for months on months? It even happens in this article!

Researche...

[ more ]