Microsoft flaw may add to SQL-injection troubles

Microsoft flaw may add to SQL-injection troubles
Robert Lemos, 2008-12-23

Microsoft flaw may add to SQL-injection troubles 2008-12-23
Anonymous

Microsoft flaw may add to SQL-injection troubles 2008-12-24
Daniel W. Crompton

Microsoft flaw may add to SQL-injection troubles 2008-12-26
ng-kreitschig

Microsoft flaw may add to SQL-injection troubles 2008-12-27
PacketDump (at) IHackDJ00 (dot) com [email concealed]

It's hard to say if it's right or wrong to release a six month old bug into the wild. In a way, I am glad that he did it but also frighted that someone might steal my information.

I guess in my opinion Microsoft is at fault for not working more with the researcher. If they had kept him updated and given a patch release date he may have held out until a day before the patch release.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/newsbriefs/875/2744#2744

Microsoft flaw may add to SQL-injection troubles 2008-12-28
Http://WormsAndExploits.blogspot.com (1 replies)

Re: Microsoft flaw may add to SQL-injection troubles 2009-01-07
Zman (1 replies)

Re: Re: Microsoft flaw may add to SQL-injection troubles 2009-01-08
Anonymous