Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Irresponsible Disclosure
Jon Lasser, 2002-06-26

Internet Security Systems violated community standards and common sense with its surprise Apache bug announcement.

Comments Mode:
Irresponsible Disclosure 2002-06-26
Anonymous (1 replies)
Irresponsible Disclosure 2002-06-28
Anonymous
Irresponsible Disclosure 2002-06-26
joe90@hushmail.com
Irresponsible Disclosure 2002-06-27
Please please please get a new UNIX writer! (7 replies)
Are you working for ISS ? 2002-06-27
nimp
Irresponsible Disclosure 2002-06-27
Anonymous
Re: Replace him! he disagrees with me and I know it all! 2002-06-27
epizz@ba.net (1 replies)
Re: Replace him! he disagrees with me and I know it all! 2002-06-28
Anonymous
Irresponsible Disclosure 2002-06-27
Anonymous
Anon poster is an "Irresponsible Disclosure" 2002-06-27
Anonymous
Irresponsible Disclosure 2002-06-29
Tired of loud mouth open source freaks (1 replies)
Irresponsible Disclosure - TO "Tired of loud-mouth open source freaks" 2002-07-01
Anonymous
Irresponsible Disclosure 2002-06-29
Anonymous
Damned if you do, damned if you don't 2002-06-27
TL (1 replies)
Damned if you do (irresponsibly), damned if you don't (ever) 2002-06-28
Tor Slettnes
Irresponsible Disclosure 2002-06-27
Anonymous
The shoe is on the other foot 2002-06-27
Anonymous (10 replies)
The shoe is on the other foot..but just barely. 2002-06-27
K.M. Ellis
The shoe is on the other foot 2002-06-27
Brian
I believe the reason this has been happening to Microsoft for years is simply because of the sheer number of vulnerabilities found by various individuals. Many of the people discovering vulnerabilities in Microsoft's products do not necessarily subscribe to the Responsible Disclosure rules; or at least the unwritten/unratified rules that exist. ISS is a company that has subscribed to these rules for other cases (Microsoft and Non-Microsoft). I am not a conspiracy theorist, but IMHO it seems that ISS was trying to beat anyone else who was hot on this vulnerability to the presses. A massive PR opportunity existed for ISS by saying that they were the company that discovered the first vulnerability in software which has not been exploitable for over four years.

Brian

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/columns/91/13322#13322
The shoe is on the other foot 2002-06-27
Anonymous
The shoe is on the other foot 2002-06-28
Anonymous
Are you working for Microsoft ? 2002-06-28
no 6
The shoe is on the other foot 2002-06-28
Anonymous
The shoe is on the other foot 2002-06-29
Anonymous
The shoe is on the other foot 2002-06-29
Anonymous
The shoe is on the other foot 2002-06-29
pseudoAnonymous
...but where should the foot be put? 2002-07-02
Andy Wood
Penalties 2002-06-27
Anonymous
Irresponsible Disclosure 2002-06-28
System Engineer in UK
Irresponsible Disclosure 2002-06-28
Anonymous
Irresponsible Disclosure -- CYA 2002-06-28
Anonymous
hehehe ! apachi is next victim 2002-06-29
ICMP_Z@yahoo.com (1 replies)
hehehe ! apachi is next victim 2002-07-01
Anonymous
what i think about ms... 2002-07-03
Lysergsäurediethylamid







 

Privacy Statement
Copyright 2009, SecurityFocus